Researchers at VPNoverview discovered that there were over 2300 data breach incidents reported by just 22 of the UK’s police forces in 2020.  The researchers requested information from the UK’s 45 police forces and received responses from 31.  …

FireEye's Mandiant cyber forensics team has released a new report focusing on the attack rates on control processes supported by Operational Technology (OT). Attacks on the control processes were previously considered complex because of access…

The growing frequency and severity of cyberattacks are increasing the demand for cyber insurance. However, a recent report from the US Government Accountability Office (GAO) reveals that insurers are struggling to adjust their policies to keep up with…

Researchers with France's national cybersecurity agency ANSSI have identified seven new flaws that affect devices supporting Bluetooth Core and Mesh specifications. These specifications define technical and policy requirements for devices that operate…

According to a new Splunk report, some 84% of global organizations have suffered a severe security incident over the past two years, and a majority are expecting another SolarWinds-style supply chain attack.  Researchers interviewed 535 security…

The United States Department of Homeland Security (DHS) is to issue its first-ever set of cybersecurity regulations for pipelines.  The news comes in the wake of a recent ransomware attack on the Colonial Pipeline that knocked operational systems…

Researchers at Ruhr-University Bochum (RUB) have discovered a security issue in the certification signatures of PDF documents. This form of signed PDF files can be used in the conclusion of contracts. The certification signature allows certain changes to…

The FBI has released an alert about Conti ransomware following the identification of at least 16 Conti ransomware attacks against US healthcare and first responder networks, including law enforcement agencies, emergency medical services, municipalities,…

​Pub Crawl summarizes, by hard problems, sets of publications that have been peer reviewed and presented at SoS conferences or referenced in current work. The topics are chosen for their usefulness for current researchers.

Spotlight on Lablet Research #18 - Project: Scalable Privacy Analysis  

Cybersecurity Snapshots #18 - Oil And Gas Companies Need to Take Cybersecurity More Seriously  

In late March, CNA Financial was hit by a variant of the Evil Corp-authored Hades ransomware called Phoenix Locker.  They agreed to the ransom demand and paid the adversaries $40 million after its IT systems were locked down and threat actors stole…