News
-
"New Study Examines Privacy and Security Perceptions of Online Education Proctoring Services"The COVID-19 pandemic has forced educational institutions to quickly transition to remote learning and exam taking, thus leading to an increase in the use of online proctoring services, such as restricted browser modes, video/screen monitoring, local…
-
"Cisco Patches High-Severity Vulnerabilities in Business Switches"Cisco recently announced patches for two vulnerabilities impacting the NX-OS software that powers its Nexus-series business switches. The first of these issues is tracked as CVE-2022-2082 and affects the OSPF version 3 (OSPFv3) feature of NX-OS.…
-
"Futureproofing Computer Security"Dr. Lisa Kohl is an expert cryptographer at Centrum Wiskunde & Informatica (CWI), the Netherlands' national mathematics and computer science research institute. She and her colleagues are looking for new ways to keep people safe online. Kohl's…
-
"Log4Shell Still Being Exploited Six Months On"According to the latest Trustwave SpiderLabs Telemetry report, six months after the Log4Shell vulnerability was disclosed, vulnerable instances are still accessible on the Internet, with threat actors still trying to exploit them. The report reveals that…
-
"Microsoft Attributes New Post-Compromise Capability to Nobelium"Security researchers from Microsoft Threat Intelligence Center (MSTIC) have discovered a new, post-compromise capability allowing a threat actor to maintain persistent access to compromised environments. Dubbed "MagicWeb," the capability has been…
-
"Study Finds Ransomware, Zero-Day Vulnerabilities Are on the Rise"According to a new report from the cybersecurity solutions provider Fortinet, the number of new ransomware variants nearly doubled in the first half of 2022, and attackers are increasingly leveraging zero-day vulnerabilities. The company's FortiGuard…
-
"Ransomware Attacks Jump as New Malware Strains Proliferate, Research Finds"Security researchers at NCC Group have found that ransomware cases jumped 47 percent amid a rise in attacks involving newer strains of malicious software infecting targets. The researchers noted that reported incidents increased to 198 in July from…
-
"CISA Warns Critical Infrastructure to Prepare for Mass Post-Quantum Systems Migration"The US Homeland Security Department's Cybersecurity and Infrastructure Security Agency (CISA) is advising critical infrastructure organizations to prepare to protect their systems from powerful quantum decryption algorithms as public and private…
-
"Top Programming Languages 2022"The IEEE recently published its annual ranking of the Top Programming Languages! The top 10 trending programming languages in 2022 include Python, Java, C, JavaScript, C++, C#, SQL, PHP, HTML, and Go. The IEEE also looked at hundreds of …
-
"Mozilla Patches High-Severity Vulnerabilities in Firefox, Thunderbird"Mozilla recently patched several high-severity vulnerabilities in its Firefox and Thunderbird products. Firefox 104, as well as Firefox ESR 91.13 and 102.2, patches a high-severity address bar spoofing issue related to XSLT error handling. …
-
"Cyberespionage Attacks by Chinese 'Gallium' Hackers Are Employing New PingPull Malware"Gallium, a Chinese Advanced Persistent Threat (APT) group, has been observed using a previously unknown Remote Access Trojan (RAT) in espionage attacks against firms in Southeast Asia, Europe, and Africa. The "difficult-to-detect" backdoor known as…
-
"Phishing PyPI Users: Attackers Compromise Legitimate Projects to Push Malware"PyPI, the official third-party software repository for Python packages, is warning its users about a phishing campaign. It was discovered that some maintainers of legitimate projects had been compromised, and malware had been published as the latest…