According to new research conducted by Sophos, global healthcare organizations (HCOs) experienced a 94% year-on-year surge in ransomware attacks last year, with almost twice as many electing to pay their extorters.  The researchers found that two-…

Security researchers at Kaspersky have discovered that the volume of mobile threats detected globally fell by nearly nine million from Q1 2021 to the first three months of 2022.  The researchers stated that in total, 6,463,414 mobile malware, adware…

EnemyBot, a rapidly evolving IoT malware, is targeting content management systems (CMS), web servers, and Android devices.  Researchers at AT&T Alien labs believe that the threat actor group "Keksec" is behind the malware distribution.  The…

Magniber ransomware was initially discovered in 2017 and has been recently upgraded to target Windows 11 machines, according to researchers at 360 Total Security.  The researchers stated that the attack volume of the ransomware increased…

Microsoft has confirmed that Windows is affected by a zero-day vulnerability after researchers warned of exploitation in the wild. The vulnerability is now tracked as CVE-2022-30190. A researcher who uses the online moniker “nao_sec” recently reported…

Researchers at SafetyDetectives recently discovered that a low-cost Turkish airline accidentally leaked personal information of flight crew alongside source code and flight data after misconfiguring an AWS bucket.  The researchers found the cloud…

The cyber division of the Federal Bureau of Investigation (FBI) has recently warned universities and colleges located in the U.S. that higher education credentials have been advertised for sale on online criminal marketplaces and publically accessible…

A "zero-trust" approach is the current best practice in secure technology architecture followed by large businesses and organizations. Zero-trust security is an approach that requires users to prove their authenticity every time they access data or a…

A team of researchers from the Indian Institute of Science (IISc) has developed a record-breaking True Random Number Generator (TRNG) to improve data encryption and provide enhanced security for sensitive digital data such as credit card details,…

The Cybersecurity and Infrastructure Security Agency (CISA) has recently published a new five-step 5G Security Evaluation Process to help companies improve their security posture before deploying new 5G applications.  The new guidelines include…

The US Homeland Security Department's Cybersecurity and Infrastructure Security Agency (CISA) issued a warning in late March that critical US infrastructure sectors could be targeted by Russian cyberattacks. The rapid development of new information and…

Bug hunters at Microsoft have discovered several high-severity vulnerabilities in a mobile framework used in pre-installed Android System apps. The researchers warn that exploitation could have allowed the implantation of a persistent backdoor on Android…