The City of Tulsa has learned that the persons responsible for the ransomware attack that it faced in May 2021 leaked more than 18,000 city files on the dark web. According to a statement from the city officials, most of the files are police citations…

The federal research and development organization MITRE has released D3FEND, a framework for cybersecurity professionals to tailor defenses against specific cyber threats. The framework was funded by the National Security Agency (NSA) to strengthen the…

According to Website Planet, a misconfigured cloud database exposed over 800 million records linked to WordPress users before its owner was notified. The trove was left online with no password protection by US hosting provider DreamHost. The data in the…

Ransomware attacks fell by 50% in Q1 2021 as threat actors shifted from using mass spread campaigns to focusing on fewer, larger targets with unique samples, according to the McAfee Threats Report. The researchers stated that the traditional approach of…

Columbia Engineering researchers recently presented two major papers at the International Symposium on Computer Architecture (ISCA) that improve the security of computer systems. These new studies have zero to little effect on system performance and are…

Google has announced a unified schema for describing vulnerabilities. The goal of the unified schema is to make it easier to share data on vulnerabilities between databases. An issue with existing vulnerability databases is that each ecosystem or…

According to researchers at Venafi, cybercrime is now the primary means by which the North Korean state is funded. The researchers analyzed publicly available information on state-sponsored attacks directed by the hermit kingdom over the past four years…

​Pub Crawl summarizes, by hard problems, sets of publications that have been peer reviewed and presented at SoS conferences or referenced in current work. The topics are chosen for their usefulness for current researchers.

Eclypsium researchers have discovered a series of vulnerabilities in the BIOSConnect feature of Dell SupportAssist that could allow attackers to remotely execute code on Dell machines. Dell SupportAssist is used to manage support functions, including…

Security patches were released earlier this month for the Zephyr real-time operating system (RTOS) used for embedded devices. The patches fix multiple vulnerabilities that can lead to a denial-of-service (DoS) condition and remote code execution if…

The frequency and sophistication of attacks against the container infrastructure continues to grow. Using internet scanning tools such as Masscan, a new vulnerable container can be detected within a few hours. Aqua Security's Cloud Native Report shares…

SoS Musings #50 - Moving Automotive Cybersecurity into the Fast Lane