This week, the Cybersecurity and Infrastructure Security Agency (CISA) has added 41 vulnerabilities to its catalog of known exploited flaws.  CISA has urged all organizations to remediate these vulnerabilities promptly to "reduce their exposure to…

Mathematicians at the University of Copenhagen made an advancement toward a new type of security identification that could help protect data from cybercriminals. They solved a mathematical puzzle that enables the use of a person's geographical location…

Recently an unnamed Nigerian man was arrested over his alleged role in leading a cybercrime group that specialized in phishing and business email compromise (BEC). Interpol announced that the arrest was a result of an international operation involving…

Insider attacks remain one of the most serious security issues faced by large businesses. Anyone accessing a company's data can pose a threat, including current and former employees, business partners, and contractors. Insider threats have become more…

Security researchers at CloudSEK have discovered a "ransomware with a cause."   The researchers warned that GoodWill ransomware could lead to both temporary and permanent loss of company data.  In addition, the ransomware could lead to a…

A researcher from Google Project Zero discovered four vulnerabilities affecting Zoom.  The four vulnerabilities range from 5.9 to 8.1 in severity.  The researcher noted that the vulnerabilities could be exploited to compromise users over chat…

According to figures from the Information Commissioner's Office (ICO), more than two-thirds (68%) of data breaches at UK law firms are caused by insiders.  ICO Data focused on Q3 2021 was analyzed by researchers from NetDocuments.  The…

Experts further highlight that better incident response plans and transparency with the public can help K-12 schools reduce the damage of cyberattacks. Doug Levin, co-founder and national director of the K12 Security Information eXchange, explained…

Screencastify, a Chrome extension used for capturing and sharing videos from websites, was discovered to be vulnerable to a cross-site scripting (XSS) flaw that could have enabled arbitrary websites to trick people into unknowingly activating their…

Researchers recently reported new findings surrounding the Chaos ransomware builder. The study revealed a family tree that links it to both the Onyx and Yashma ransomware variants. The BlackBerry research and intelligence team said there are signs…

Researchers discovered fake proof-of-concept (PoC) exploits that appear to have been created by threat actors to deliver malware to members of the cybersecurity community. On May 19, researchers revealed that GitHub was hosting malware disguised as PoC…

Researchers from Agari and PhishLabs have discovered that vishing (voice phishing) cases have increased almost 550 percent over the last twelve months (Q1 2022 to Q1 2021).  In Q1 2022, Agari and PhishLabs detected and mitigated hundreds of…