Ravi Sen, a Texas A&M cybersecurity researcher, brings further attention to how information shared online can help hackers successfully execute phishing attacks. Using the Internet results in the creation of a trail of data or a set of digital…

Artificial intelligence (AI) applications within business and government organizations are being adopted rapidly.  Some of the AI applications being adopted rapidly include: automating activities to function more efficiently, reshaping shopping…

The developers behind Raspberry Pi have enhanced security.  A senior principal software engineer explained that previously, users were able to keep the default username “pi.” They were also able to bypass a setup wizard which requested users to…

A team of researchers at Salt Security's Salt Labs discovered a Server-Side Request Forgery (SSRF) flaw in the Application Programming Interface (API) of a large financial technology (fintech) platform. The flaw could have compromised millions of bank…

HOTSOS 2022 BEST UNDERGRADUATE POSTER AWARD Congratulations to Sanjana Cheerla at NCSU for winning the HoTSoS Best Undergraduate Poster Award for their poster Identifying Online Misbehavior. Check out the Announcement & Closing Remarks…

HOTSOS 2022 BEST POSTER AWARD Congratulations to Samin Yaseer Mahmud & William Enck at NCSU for winning the HoTSoS Best Poster Award for their poster A Study of Security Weakness in Android Payment Service Provider SDKs.  Check out…

A team at Website Planet has found that a configuration error exposed millions of internal records traced back to Fox News, including personally identifiable information on employees.  The researchers claimed that anyone with an internet connection…

A leading US payments company is contacting over eight million current and former customers of its Cash App Investing subsidiary that a malicious insider may have accessed their details.  San Francisco-headquartered Block revealed the news in an SEC…

Researchers at North Carolina (NC) State University have developed a new method that uses hardware and software to strengthen file system security for next-generation memory technologies called Non-Volatile Memories (NVMs). Their encryption technique…

A team of researchers has developed an algorithm, which is a new Byzantine Fault Tolerance (BFT) consensus protocol, to improve the resiliency, efficiency, and speed of blockchains. The new BFT consensus protocol can overcome faults and avoid system…

A new study in the International Journal of Networking and Virtual Organizations explores the use of deep learning to detect Distributed Denial-of-Service (DDoS) attacks, which could help service providers lessen the effects of these attacks. According…

The Science of Security and Privacy 2022 Annual Report is now available. This report highlights the progress and accomplishments of the Science of Security and Privacy initiative.