Ponemon Institute conducted a survey to which 603 US cybersecurity professionals responded. The survey asked them to share their thoughts on the effectiveness of firewalls in protecting against ransomware attacks and other security threats. More…

A new study by Orca Security, a cloud security company, found cases of poor security flaw patching and software component updating for virtual appliances among many software vendors. Orca Security's scan of more than 2,200 virtual appliance images from…

Researchers at TU/e have discovered a sophisticated Russian-based online black marketplace in which hundreds of thousands of detailed user profiles are traded among cybercriminals. These profiles are personal fingerprints, which could be used to evade…

The Wisconsin Republican Party discovered that hackers had stolen $2.3 million from Trump re-election effort.  The hackers manipulated invoices from four vendors.  The invoices and other documents were altered, so when the party paid them, the…

The Department of Homeland Security's Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the Department of Health and Human Services warn US healthcare providers to be on high alert over Trickot…

The United States Department of Defense (DOD) developed the Commercial Virtual Remote (CVR) Environment to support mass telework during the COVID-19 pandemic. However, the department is working on another solution that will support long-term telework as…

According to the security firm Sophos, the operators behind Ryuk ransomware are using a malware-as-a-service tool called Buer to deliver the malware. Researchers have found that the Ryuk operators have been relying on this tool to deliver their…

Hewlett Packard Enterprise (HPE) released patches for two critical vulnerabilities. These vulnerabilities were discovered in the StoreServ Management Console (SMMC), BlueData EPIC Software Platform, and Ezmeral Container Platform. One of the…

Researchers from Avast have found 21 gaming apps loaded with adware from the HiddenAds family on Google Play. The malicious gaming apps have been downloaded about 8 million times so far. The adware loaded on the malicious apps was used to serve up…

Researchers from Veracode analyzed 130,000 applications and found that most of the applications contained at least one security flaw (76 percent).  Only 24 percent of the security flaws found were high-severity flaws. Most of the applications…

Independent researchers have discovered that link previews in popular chat apps on iOS and Android are a firehose of security and privacy issues.   Facebook Messenger, LINE, Slack, Twitter Direct Messages, Zoom, and many others are at risk. In the…

Details about a novel control architecture that defends complex, interconnected systems from cyberattacks have been published in the IEEE/CAA Journal of Automatica Sinica. Researchers from Italy and Canada developed a method to mitigate damaging…