News
-
"Treasury Seeks Comment on How to Structure a Cyber Insurance Program"The US Treasury Department's Federal Insurance Office (FIO) wants to know if a national cyber insurance program should enforce that policyholders implement basic cybersecurity measures. In a request for comment set to be published in the Federal Register…
-
"Government, Union-Themed Lures Used to Deliver Cobalt Strike Payloads"Security researchers at Cisco Talos discovered a malicious campaign in August 2022 that relied on modularized attack techniques to deliver Cobalt Strike beacons and used them in follow–on attacks. The researchers stated that the threat actors…
-
"XSS Flaw in Prevalent Media Imaging Tool Exposes Trove of Patient Data"Canon Medical's Vitrea View is a widely used tool for securely sharing medical images between radiologists, physicians, and other healthcare providers on a patient care team. Researchers at Trustwave's SpiderLabs have recently discovered two…
-
"U of G Researchers Aim to Make 'Smart Farming' Work for Greater Food Security"According to researchers at the University of Guelph, Canada's wide-open farm fields are vulnerable to cyberattacks and data privacy attacks, as well as unethical data use. Dr. Rozita Dara, a professor in the College of Engineering and Physical Sciences…
-
"A Third of People Fall Victim to Cyberattacks Despite Training"The National Cybersecurity Alliance and CybSafe surveyed 3,000 people in the US, UK, and Canada, finding that while 58 percent of tech users who had access to cybersecurity training or education say they are better at recognizing phishing messages and…
-
"LSU Receives Elite Cyber Designation From the National Security Agency"The National Security Agency (NSA), the nation’s preeminent cybersecurity agency, has designated LSU as a Center of Academic Excellence in Cyber Operations, or CAE-CO. LSU joins only 21 other universities and colleges in the U.S. with the designation,…
-
"IRS Warns of 'Industrial Scale' Smishing Surge"The Internal Revenue Service (IRS) is warning US taxpayers of an “exponential” increase in text-based phishing attempts and is urging users to report campaigns to help the government disrupt them. The tax agency said it had identified thousands of…
-
"New Training Program Will Make Advanced Manufacturing More Secure"A project funded by the National Science Foundation (NSF) and led by faculty members at the University at Buffalo's School of Engineering and Applied Sciences will provide critical training in Cyber-Infrastructure (CI) technologies for the next…
-
"Mobile, Cloud and Email Are Top Threat Vectors For 2023"According to new research by PwC, tech executives consider business email compromise (BEC), ransomware, and attacks on cloud management interfaces as the threats most likely to increase from this year to the next and singled out mobile, email, and cloud…
-
"Mandiant Unearths New Espionage-Related Malware Families Affecting VMware Hypervisors"Mandiant has uncovered a new ecosystem of espionage-related malware targeting VMware ESXi, Linux vCenter servers, and Windows virtual machines that allows an attacker to transfer files between hypervisors and guest machines, tamper with logging, execute…
-
"Container Supply Chain Attacks Cash In on Cryptojacking"Threats to cloud-native infrastructure are increasing, especially as attackers target cloud and container resources to fuel their illicit cryptomining operations. According to Sysdig's 2022 Cloud-Native Threat Report, cybercriminals are targeting cloud…
-
"65% Of Companies Are Considering Adopting VPN Alternatives"Although there is widespread awareness of Virtual Private Network (VPN) risks, remote work forced many businesses to rely on legacy access methods during the COVID-19 pandemic. According to Zscaler's VPN Risk Report, cybercriminals continue to exploit…