Cybersecurity researchers at Kaspersky have discovered a third known case of a firmware bootkit in the wild.  The kit, which made its first appearance in the wild in the spring of 2021, has been named MoonBounce.  The security researchers…

Security researchers asked more than 330 remote employees from a wide range of industries to self-report on both their daily stress levels and their adherence to cybersecurity policies over the course of two weeks.  The security researchers also…

The SafeBreach research team discovered a way to collect vast amounts of stolen user credentials through the execution of searches on the online service used to analyze suspicious files and URLs called VirusTotal. The team was able to collect over a…

Researchers with Varonis Threat Labs have discovered a way to circumvent the multi-factor authentication for Box accounts in which SMS text code is used for log-in verification. With this method, an attacker could use stolen credentials to compromise an…

Since the pandemic, QR codes have been used much more in restaurants and other businesses.  Many users like to use them, but the FBI is warning that scammers love them as well.  The FBI noted that cybercriminals are taking advantage of this…

Law enforcement officials from almost a dozen countries teamed up to take down a virtual private service used by threat actors to distribute malware, carry out ransomware operations, and commit other cybercriminal activities. According to the European…

"On One-way Functions and Kolmogorov Complexity" wins the 9th Annual Best Scientific Cybersecurity Paper Competition. This paper was written by Yanyi Liu from Cornell University and Rafael Pass from Cornell Tech. An honorable mention award was given to "…

According to security experts, threat actors using the data-sharing website, Doxbin, have had highly sensitive information leaked online. Doxbin is often used by hackers to dump their victims' Personally Identifiable Information (PII). According to the…

A new ransomware family dubbed "White Rabbit," which hit a US bank last month, is suspected to be connected to FIN8, the financially-motivated Advanced Persistent Threat (APT) group. According to Trend Micro researchers, the operators behind the White…

A new initiative has been launched in the UK to divert young people from cybercrime after cyberattacks designed to block access to school networks and websites more than doubled during the COVID-19 pandemic. Data from the National Crime Agency's National…

NATO on Monday agreed to bolster its cyber support for Ukraine after a cyberattack against Kyiv heightened tensions amid fears that Russia could be plotting an invasion of Ukraine.  NATO Secretary General Jens Stoltenberg stated that experts from…

Zoho Corp has released patches for a critical vulnerability affecting Desktop Central and Desktop Central MSP, the endpoint management solutions from ManageEngine.  Tracked as CVE-2021-44757 and rated critical severity, the newly addressed security…