An international Penn State-led team has developed a new and more reliable approach to defending vulnerable data on the stack, which is a memory region responsible for storing computer program data for processes. This vulnerable data could include return…

In a coordinated effort with foreign partners, the Department of Justice took down a Russian hackers' network and domain. The network was responsible for hacks of millions of computers and devices worldwide. The DOJ disruption is the latest crackdown of…

Security researchers at Microsoft recently published a report.  The researchers found that coinciding with unrelenting cyberattacks against Ukraine, state-backed Russian hackers have engaged in "strategic espionage" against governments, think tanks…

Virginia Beach Police are investigating the hacking of a CITGO gas station pump that resulted in the theft of more than $13,600 worth of gas. Two people have been charged in connection with the crime. According to officers, the individuals used a remote…

Security researchers at the CERT Coordination Center (CERT/CC) at Carnegie Mellon University have discovered a critical vulnerability in the SMA Technologies OpCon UNIX agent resulting in the same SSH key being deployed with all installations. OpCON is…

Delivery services provider Yodel says it is working on restoring operations after falling victim to a disruptive cyberattack.  Yodel is one of the largest couriers in the United Kingdom and was initially known as the Home Delivery Network, but it…

Over the last decade, distributed ledger technology, such as blockchains, has become more prevalent in various contexts. The idea is that blockchains operate securely without centralized control and are unsusceptible to change. The Defense Advanced…

Security researcher Filip Dragovic published a new DFSCoerce Windows NTLM relay attack that uses MS-DFSNM (Microsoft’s Distributed File System) to take over Windows domains.  Dragovic posted on a GitHub page detailing his findings.  Microsoft…

According to new research conducted by the non-profit Identity Defined Security Alliance (IDSA), the number of security breaches stemming from stolen or compromised identities has reached epidemic proportions.  The IDSA polled 500 US identity and…

A recently discovered Magecart skimming campaign has origins in an earlier attack activity dating back to November 2021. Magecart is a cybercrime syndicate made up of dozens of subgroups specializing in cyberattacks involving digital credit card theft…

Europol recently announced that police have dismantled a cybercrime group that made millions of euros through phishing and other types of schemes. The operation was conducted by police in Belgium and the Netherlands, with support from Europol. The…

QNAP has issued a warning to customers that some of its Network Attached Storage (NAS) devices (with non-default configurations) are vulnerable to attacks that take advantage of a three-year-old critical PHP vulnerability, which allows Remote Code…