The National Institute of Standards and Technology (NIST) has drafted cybersecurity criteria for consumer software in an effort towards helping consumers make better decisions when purchasing software. The criteria aims to assist in the development and…

Security researchers at Malwarebytes have discovered that a new Magecart threat actor is stealing people’s payment card info from their browsers using a digital skimmer that uses a unique form of evasion to bypass virtual machines (VM) so it targets only…

Researchers at Sophos conducted a new study on ransomware and based their findings on evidence and insight from a team of 24/7 incident responders who help organizations under active cyberattacks. The researchers found a shift in ransomware pressure…

A team of researchers from the University of Geneva (UNIGE), Switzerland, has developed a new system to secure data transfers based on the physical principle of relativity. As the volume of data transferred continues to grow, it is essential to bolster…

Matthew Channon from the University of Exeter and James Marson from Sheffield Hallam University conducted a study, suggesting that government action is needed for driverless cars to be insured against malicious hacks. Driverless vehicles use software…

A team of researchers with Intel 471 shared their new observations of cybercriminals hitting organizations in the supply chain sector with cyberattacks and claiming to have accessed networks for companies that operate maritime, air, and ground cargo…

Researchers at Javelin Strategy & Research discovered that the annual cost of child identity theft and fraud in the United States is nearly $1bn.  The researchers put out a report titled "2021 Child Identity Fraud."  The researchers…

Security experts at Imperva are warning of potential disruption to the upcoming holiday shopping season after recording a double-digit year-on-year increase in bot-driven cyberattacks so far in 2021.  The researchers found that half (57%) of attacks…

Daniel Thatcher, a researcher and penetration tester at Intruder, has developed a technique for testing and identifying how HTTP/HTTPS headers could be used by malicious threat actors to sneak code into back-end servers. Thatcher will share his findings…

The European Union Agency for Cybersecurity (ENISA) has released its annual report on the state of the cybersecurity threat landscape. The 9th annual ENISA Threat Landscape (ETL) report covers April 20 to July 2021. The report provides recommendations…

Phishing emails try to trick people into doing things they would not normally do, such as transferring money, running malicious programs, sharing their password, and more. Cybersecurity professionals often blame people for not noticing that phishing…

The Federal Bureau of Investigation (FBI) has published a flash alert to share details on the tactics, techniques and procedures (TTPs) and indicators of compromise (IOCs) associated with the Hello Kitty ransomware, which is also known as FiveHands.…