The National Security Agency and Science of Security annouced that "Spectre Attacks: Exploiting Speculative Execution” as the winner of its 8th Annual Best Cybersecurity Research Paper competition.  Originally published at the 2019 IEEE Security…

Cybersecurity researchers from the Ben-Gurion University of the Negev demonstrated an end-to-end attack that can change data on a bioengineer's computer. As this cyberattack could meddle with DNA orders, it could lead to the development of toxins and…

Cybercriminals have targeted victims with phishing emails hoping that many families would be using Zoom to call family and friends over the Thanksgiving weekend.  The major phishing campaign is aimed at stealing Microsoft credentials.  Threat…

A security researcher accidentally discovered a zero-day vulnerability that affects the Windows 7 and Windows Server 2008 R2 operating systems while working on a Windows security tool. The vulnerability stems from two misconfigured registry keys for the…

According to a report from the cloud security provider CDNetworks, the number of Distributed Denial-of-Service (DDoS), web application, and botnet attacks increased significantly in the first half of 2020 compared to that of 2019. The "State of the Web…

WatchGuard predicts that automation will shape cybersecurity attack and defense activities in 2021. According to the global leader in network security and intelligence, manual techniques will be replaced by automation tools to launch spear-phishing…

Researchers at vpnMetro have recently found an unsecured internet-facing database containing over 380 million individual records, including login credentials leveraged to break into 300,000 to 350,000 Spotify accounts. The exposed records were stored on…

Verizon's 2020 Cyber Espionage Report pulls information from other annual reports, including seven years of the Verizon Data Breach Investigations Report (DBIR) and fourteen years of research from the Verizon Threat Research Advisory Center (VTRAC).…

A ransomware attack disabled the Baltimore County Public School system's entire network.  The attack occurred on the network Tuesday night.   The form of ransomware used was not disclosed, but some researchers believe it is Ryuk ransomware.…

The Federal Bureau of Investigation (FBI) has issued an alert to the public about the registration of domains designed to spoof legitimate FBI-related websites. The agency also warns of the use of spoofed email accounts to trick victims into revealing…

Researchers at Bolster have discovered that in Q2 of 2020, there was an alarming, rapid increase of new phishing and fraudulent sites being created.  The researchers detected 1.7 million phishing and scam websites, which is a 13.3% increase from Q1…

Researchers from the security company NCC Group and the UK consumer organization Which? analyzed 11 video doorbells sold on Amazon and eBay and discovered high-risk vulnerabilities in all of the devices. One of the vulnerabilities shared among them was…