News
-
"Vulnerabilities in Cisco Identity Services Engine Require Your Attention"Cisco is warning administrators of Cisco Identity Services Engine (ISE) solutions about two vulnerabilities that could be exploited to read and delete files on an affected device, as well as execute arbitrary scripts or access sensitive information. The…
-
"New URSNIF Variant Doesn't Support Banking Features"Mandiant researchers are warning of a major shift from URSNIF's original purpose, with the malware now used to deliver next-stage payloads and steal sensitive data. The malware was initially used in banking fraud. The new variant, dubbed LDR4, was…
-
"BlackByte Ransomware Uses New Data Theft Tool for Double-Extortion"A BlackByte ransomware affiliate is quickly stealing data from compromised Windows devices using a new custom data-stealing tool called 'ExByte.' One of the most important functions in double-extortion attacks is data exfiltration. Ransomware operations…
-
"Hackers Started Exploiting Critical 'Text4Shell' Apache Commons Text Vulnerability"Wordfence, a WordPress security company, announced that it began detecting exploitation attempts targeting the newly disclosed Apache Commons Text flaw on October 18, 2022. The vulnerability, CVE-2022-42889, also known as Text4Shell, has been assigned a…
-
"Focus On Cybersecurity: Researchers Develop Photonic Encryptions"As cybercrime incidents continue to rise, a consortium of research institutes, private enterprises, and universities has formed the Silhouette project to develop solutions for encrypting data in the optical domain that is considered safe from tampering…
-
"Commonwealth Cyber Initiative Researchers Hone Cryptographic Algorithms to Stand Against Powerful Quantum Threat"The US National Institute of Standards and Technology (NIST) has challenged the world's cryptographers to develop encryption techniques to thwart cyberattacks by powerful quantum computers. Commonwealth Cyber Initiative (CCI) researchers from Virginia…
-
"Core Values Shape Success of Sherlock Team to Deliver Cybersecurity Results"The Sherlock Cloud Solutions and Services Division (Sherlock) of the San Diego Supercomputer Center (SDSC) at UC San Diego works to solve the mysteries that cyberinfrastructure and cloud computing can present to the people and places served by the…
-
"Hackers Target Australian Health Insurance Agency Medibank in Major Breach of Patient Data"It has recently been discovered that hackers have breached the cloud-based data network of one of Australia's largest health insurers, potentially exposing the personal information of millions of patients throughout the country. Medibank stated…
-
"CyLab Presents IoT Privacy and Security Label Research at White House Summit"The Carnegie Mellon University (CMU) CyLab Security and Privacy Institute recently attended the White House's Internet of Things (IoT) security summit to discuss what is required to foster an effective IoT security labeling ecosystem. Consumers have…
-
"Zoom Patches High-Severity Flaw in macOS Client"Video messaging platform Zoom recently released a new patch to a high-severity flaw in its client for macOS devices. The vulnerability (tracked CVE-2022-28762) refers to a debugging port misconfiguration affecting versions starting with 5.10.6 and…
-
"Students Bring Spark, Power and Drive to Cybersecurity Research"The Commonwealth Cyber Initiative (CCI), led by Virginia Tech, is Virginia's primary access point for cybersecurity research, innovation, and workforce development. Radford University, the University of Virginia's College at Wise, Virginia Military…
-
"Software Supply Chain Attacks Soar 742% in Three Years"Researchers at Sonatype have uncovered 88,000 malicious open-source packages so far this year, a triple-digit increase on the same figure in 2019 and indicative of a fast-growing corporate attack surface. The researchers stated that there is a…