Securing the infrastructure remains challenging as more organizations migrate their data, applications, and workloads to the cloud. Because security teams do not always know what is going on in each cloud environment, it is difficult to detect when…

A group of security researchers discovered that several modern Honda vehicle models have a vulnerable rolling code mechanism that allows remote unlocking and engine starting. The vulnerability, called Rolling-PWN, enables replay attacks in which a threat…

Determining whether early childhood services should be improved or expanded needs good data, but obtaining that data is difficult when the entities providing resources and support to families with young children, such as federal and state departments,…

NSA recommends that system administrators use PowerShell to manage systems. The Windows program can detect and prevent hacking and other suspicious activity. This tool with its inherent security features can be helpful to admins trying to defend systems…

Deepfake videos, images, audio, or text may appear to be authentic, but they are computer-generated clones intended to mislead people and sway public opinion. They are used to spread disinformation and appear in cybersecurity, politics, counterfeiting,…

Recently a pro-Russian cybercrime group attacked the Congress.gov web domain resulting in temporary downtime that "briefly affected public access," the Library of Congress stated.  KillNet, a pro-Russian group, launched a series of distributed…

Twitter recently announced that it removes 1 million spam accounts each day.  Twitter said the spam accounts represent well below 5% of its active user base each quarter. To calculate how many accounts are malicious spam, Twitter reviews “…

Recent social media phishing scams have intensified their scare tactics by making false accusations of account abuse in order to force victims into providing their login information. Two phishing attacks on Twitter and Discord were recently discovered by…

Cybersecurity solutions provider Emsisoft has recently released a free decryption tool to enable AstraLocker and Yashma ransomware victims to recover their files without paying a ransom.  The company noted that the AstraLocker decryptor is for the…

Despite Google's efforts to secure the apps it distributes through the Play Store, cybersecurity researchers regularly discover malicious, malware-laced apps masquerading as harmless and download-worthy on the platform. The Joker malware, a spyware…

A recent study by security researchers from Juniper Research suggests that total losses to online payment fraud will exceed $343bn globally over the next five years, driven largely by fraudster innovation in areas such as account takeover fraud and…

On July 4th, French telecoms operator La Poste Mobile was a victim of a ransomware attack targeting the company's administrative and management systems.  The attack is believed to have been carried out by the LockBit ransomware group.  The…