According to the Ukrainian Computer Emergency Response Team (CERT-UA), Russian hacker gangs have been using the Follina code execution vulnerability in recent phishing attempts to install the CredoMap malware and Cobalt Strike beacons. The APT28 hacking…

Criminals are performing voice phishing (vishing) attacks to trick people in the US military and technology organizations into revealing credentials for Microsoft Office 365 software and Outlook email accounts. According to US security firm Zscaler,…

Gartner has unveiled the top 8 cybersecurity predictions for 2022 through 2023. Richard Addiscott, Senior Director Analyst, and Rob McMillan, Managing Vice President at Gartner, discussed the top predictions prepared by Gartner cybersecurity experts to…

With advancements in computer vision and Machine Learning (ML), various technologies can now do complex tasks with little or no human oversight. Many computer systems and robots use visual information to make critical decisions, from autonomous drones…

According to a survey conducted by Hornetsecurity, organizations activated more Microsoft 365 security features in the last year as cyberattacks increasingly targeted them. The global IT security and compliance survey of over 800 IT professionals…

A security researcher was able to hack into the backend of a series of Jacuzzi smart hot tubs. Like other Internet of Things (IoT) devices, the Jacuzzi SmartTub allows users to control the settings of their tub from a distance using their phone or…

Security researchers at Kaspersky have discovered a new advanced persistent threat (APT) targeting Microsoft’s Exchange servers in Europe and Asia.  Dubbed ToddyCat, the APT actor utilizes two formerly unknown tools Kaspersky called ‘Samurai…

Security researchers at Forescout have recently disclosed 56 new vulnerabilities in 10 operational technology (OT) vendors’ products.  The researchers say the vulnerabilities found demonstrates significant “insecure-by-design” practices.  The…

Several major companies, including IBM and Google, are currently working on quantum computing projects.  Amazon is also in the mix.  Amazon opened the AWS Center for Quantum Computing last year and has offered quantum computing via Amazon Web…

According to an advisory released by the US Homeland Security Department's Cybersecurity and Infrastructure Security Agency (CISA), there are two medical device vulnerabilities in select Hillrom electrocardiograph products that could lead to unauthorized…

Air raid sirens sounded in the Israeli cities of Jerusalem and Eilat on Sunday evening, and it appears that they were triggered by a cyberattack, possibly conducted by Iranian hackers. The sirens used to warn the population about rocket attacks…

A Cloudflare outage on Tuesday knocked out numerous popular web services, including major crypto exchanges FTX, Bitfinex, and OKX, raising questions about the security of centralized crypto platforms.  Many services affected by the Cloudflare…