News
-
"Bitdefender Releases Free MegaCortex Ransomware Decryptor"The antivirus company Bitdefender has released a decryptor for the MegaCortex ransomware family, allowing victims of the gang to restore their data for free. Bitdefender analysts and professionals from Europol, the NoMoreRansom Project, and the Zürich…
-
"Blind Eagle Hackers Return with Refined Tools and Sophisticated Infection Chain"Blind Eagle, a financially driven threat actor, has reemerged with a sophisticated toolkit and a complex infection chain as part of its attacks against Colombian and Ecuadoran organizations. Check Point's latest research provides new insights into the…
-
"Cloud-Native Application Adoption Puts Pressure on AppSec Teams"Oxeye released five predictions about what will influence enterprise security spending in 2023. The industry-wide analysis shows that the industry is moving away from outdated software infrastructure and standardizing on cloud-native applications, thus…
-
"Team to Present Work Around Spiking Neural Networks at DATE Conference"A research team from the College of Engineering at the University of Missouri led by assistant professor Khaza Anuarul Hoque will present two papers at the Design Automation and Test in Europe Conference and Exhibition (DATE). Both publications advance…
-
"IARPA Aims to Thwart Cyberattacks With Psychology"The leading research agency in the Intelligence Community wants to develop new algorithms to counter cyberattacks by psyching out the malicious actors behind them. The Intelligence Advanced Research Projects Activity (IARPA) plans to organize an event to…
-
"Why Do Ransomware Victims Pay for Data Deletion Guarantees?"Ransomware attackers exploit victims' need to resolve situations quickly. The option to pay a ransom for a decryptor to unlock forcibly encrypted data is presented to victims. If they pay more, their name will be removed from the victim list on a…
-
"RI Housing And Mortgage Finance Agency Hit by Data Breach"Mortgage customers of Rhode Island Housing have recently received notices from a third-party vendor that their personal information was involved in a data breach in the spring. NewCourse Communications sent the notices to Rhode Island Housing…
-
"Attackers Create 130K Fake Accounts to Abuse Limited-Time Cloud Computing Resources"An attacker group is conducting a malicious cryptocurrency mining operation using the free or trial-based cloud computing resources and platforms provided by GitHub, Heroku, and Togglebox. The operation involves the creation of tens of thousands of fake…
-
"Fortinet Fixes Serious Flaw in FortiADC"Fortinet has issued patches for a critical flaw in multiple versions of its popular FortiADC application delivery controller, which might allow an attacker to execute arbitrary code. The vulnerability, tracked as CVE-2022-39947, is an OS command…
-
"Defensive vs. Offensive AI: Why Security Teams Are Losing the AI War"The weaponization of Artificial Intelligence (AI) against organizations with insufficient AI and Machine Learning (ML) experience gives bad actors an advantage in the AI cyberwar. Threat actors have a significant advantage over most organizations because…
-
"Cricket-Oriented Platform 'Drops a Dolly' Exposing User Data"Researchers at Cybernews discovered a database containing a massive amount of data left exposed by a social platform for the cricket community. Emails, phone numbers, names, hashed user passwords, dates of birth, and addresses are all stored in the open…
-
Pub Crawl #69Pub Crawl summarizes, by hard problems, sets of publications that have been peer reviewed and presented at SoS conferences or referenced in current work. The topics are chosen for their usefulness for current researchers.