News
-
"US Warns of Foreign Disinfo Ops Ahead of Midterms"The US authorities are urging voters to critically evaluate any information they receive about the upcoming midterms after warning that foreign actors may seek to sow doubt about the result. The FBI and the US Cybersecurity and Infrastructure…
-
"Study Finds the Risks of Sharing Health Care Data Are Low"Scientists have made significant progress in developing Artificial Intelligence algorithms that can analyze patient data and create new ways to diagnose a disease or predict which treatments work best for different patients. The success of those…
-
"Hacker Exploits Bug to Steal Millions from Binance Bridge"After a hacker stole at least $100 million in cryptocurrency, the world's largest cryptocurrency exchange suspended trading on a smart contract blockchain. The hacker made $586 million from the Binance Smart Chain (BSC) attack. Binance CEO Changpeng "CZ…
-
"LofyGang Hackers Built a Credential-Stealing Enterprise on Discord, NPM"By distributing 200 malicious packages and fake hacking tools on code hosting platforms such as NPM and GitHub, the LofyGang threat actors have built a credential-stealing enterprise. Researchers have discovered these packages in supply chain attacks…
-
"Hackers Have It Out for Microsoft Email Defenses"According to researchers, attackers are increasingly focused on crafting attacks that are specialized to circumvent Microsoft's default security, thus requiring a shift in defense posture for organizations in the future. A new report from Avanan, which…
-
"Shadow APIs Hit With 5 Billion Malicious Requests"Cequence Security published its "API Protection Report: Shadow APIs and API Abuse Explode" report for the first half of 2022. Approximately 5 billion (31 percent) malicious transactions targeted unknown, unmanaged, and unprotected Application Programming…
-
"Hackers Can Use 'App Mode' in Chromium Browsers for Stealth Phishing Attacks"It has been demonstrated in a new phishing technique that the App Mode feature in Chromium-based web browsers can be abused to create realistic desktop phishing applications. App Mode is intended to provide native-like experiences by launching…
-
"LilithBot Malware, a New MaaS Offered by the Eternity Group"Zscaler researchers have linked a newly discovered sample of LilithBot malware to the Eternity Group, also known as EternityTeam and Eternity Project. The Eternity Group runs a Malware-as-a-Service (MaaS) platform and is linked to the Russian "Jester…
-
"Russian-Speaking Hackers Take Credit For Taking Down Websites Belonging to US State Governments"A Russian-speaking hacker gang is claiming responsibility for the takedown of several websites belonging to state governments in the US. The Kentucky Board of Elections website, which provides voter registration information, was also hacked despite the…
-
"Testing Chips For Security"As supply chains and manufacturing processes become more diverse, it becomes much more difficult to validate the security of complex chips. Furthermore, justifying the time and expense to do so can be difficult, and there is little agreement on the ideal…
-
"How Do We Know When Cyber Defenses Are Working?"Josephine Wolff, associate professor of cybersecurity policy at the Fletcher School at Tufts University, points out that measuring and communicating defensive victories in cyberspace continues to be difficult. Successful attacks are often visible and…
-
"Personal Information of 123K Individuals Exposed in City of Tucson Data Breach"The City of Tucson, Arizona, is notifying roughly 123,000 individuals that their personal information was compromised in a recent data breach. The data breach was identified at the end of May 2022, but the city concluded its investigation only last…