The US Securities and Exchange Commission (SEC) has imposed fines on four companies, namely Unisys, Avaya Holdings Corp., Check Point and Mimecast, over their handling of the 2020 SolarWinds breach. Unisys was fined $4m for misleading disclosures and control violations, while the others were fined close to $1m each for vague or incomplete information about the breach’s impact on their operations. The SEC’s move aims to discourage similar “half-truth” communications in future cybersecurity incidents.

Outlaw Group Uses SSH Brute-Force to Deploy Cryptojacking Malware on Linux Servers
Cybersecurity researchers have revealed details about Outlaw, an “auto-propagating” cryptocurrency mining botnet that targets SSH servers with weak credentials. The Romanian-origin malware performs SSH brute-force