News
-
"8 Areas of Future Research in Zero Trust"In the National Cybersecurity Strategy published on March 1, 2023, the Biden administration committed to improving federal cybersecurity by implementing a Zero Trust Architecture (ZTA) strategy as well as modernizing Information Technology (IT) and…
-
"Used Routers Often Come Loaded With Corporate Secrets"Researchers from the security company ESET discovered that over half of the secondhand enterprise routers they purchased for testing were overflowing with network information, credentials, and sensitive data about the institutions that previously owned…
-
"Irrigation Systems in Israel Hit With Cyber Attack That Temporarily Disabled Farm Equipment"The cyberattack that targeted irrigation systems in Israel is suspected to be part of an annual "hacktivist" campaign. The hackers targeted farms and water treatment facilities. A dozen farms failed to heed a warning from the National Cyber Directorate…
-
"As Cyber Attacks Surge, the Defense Department Turns to Universities for Cybersecurity Grads"As cyberattacks make the US, its businesses, and its citizens more vulnerable to data breaches, ransomware, and IP theft, the country's demand for cybersecurity professionals exceeds its talent pool. In 2022, the US cybersecurity workforce grew by five…
-
"MITRE Debuts Cyber Risk Analysis & Adversarial Emulation Tools to Secure Critical Infrastructure"Critical infrastructure is riddled with cyber vulnerabilities, but the issue is which vulnerabilities must be mitigated first. MITRE is debuting its Infrastructure Susceptibility Analysis (ISA) that identifies and prioritizes mitigations by exploring how…
-
"A Security Team Is Turning This Malware Gang's Tricks Against It"The attacks and operations of specific cybercriminal groups, such as ransomware gangs, botnet operators, and financial fraudsters, receive special attention. However, the larger ecosystem behind digital crime has various malicious actors and…
-
"Peugeot Leaks Access to User Information in South America"Stellantis' French automobile brand Peugeot exposed its customers in Peru, a South American country with a population of roughly 34 million. Although the country is not a particularly significant market for the automaker, this discovery is yet another…
-
"Critical Flaw Patched in VMware Workstation and Fusion"VMware has recently addressed multiple security vulnerabilities in its Workstation and Fusion products. The vulnerabilities, identified as CVE-2023-20869, CVE-2023-20870, CVE-2023-20871, and CVE-2023-20872, have been privately reported to VMware…
-
"Alloy Taurus Hackers Update PingPull Malware to Target Linux Systems"Security researchers at Palo Alto Network's Unit 42 have observed the threat actor known as Alloy Taurus deploying a new variant of the PingPull malware targeting Linux systems. The researchers believe Alloy Taurus is a Chinese advanced persistent…
-
"A Developer Exploited an API Flaw to Provide Free Access to GPT-4"Unconcerned with legal repercussions, a developer is attempting to reverse engineer Application Programming Interfaces (APIs) in order to provide free access to popular Artificial Intelligence (AI) models such as OpenAI's GPT-4. The developer's project…
-
"UK Cyber Pros Burnt Out and Overwhelmed"According to security researchers at Expel, over half (52%) of UK IT decision-makers (ITDMs) expect security team members to leave within the year due to burnout. The researchers polled 500 ITDMs from organizations of all sizes for their study.…
-
"Quad Countries Prepare For Info Sharing on Critical Infrastructure"The Quadrilateral Security Dialogue (Quad) is working on a new information-sharing agreement that would help its four members improve cyber-resilience and their response to critical infrastructure (CNI) threats. The four members of the group are…