Instagram contained a critical security flaw that could have allowed malicious actors to perform remote code execution. According to Check Point researchers, the exploitation of this flaw involves sending a specially sized image file to a victim's device…

Adversaries are starting to use bogus General Data Protection Regulation (GDPR) compliance reminders to trick employees of businesses across several industries into giving out their email login credentials.  If a user clicks on the link in the…

Researchers from the Singapore University of Technology and Design (SUTD) and the Institute for Infocomm Research (I2R) discovered SweynTooth, a set of 11 critical cyber vulnerabilities that affect Bluetooth-based medical devices. These security lapses…

Recently published research from CrowdStrike reveals the targeting of entities within the telecommunications sector by six Chinese hacking groups in the first half of 2020. According to CrowdStrike, the groups' hacking operations are likely aimed at…

Researchers have found a vulnerability in Firefox for Android that would allow an adversary to launch websites on a victim's phone, with no user interaction.  For the adversary to exploit the bug, the attacker would need to be attached to the same…

Researchers at the National Institute of Standards and Technology (NIST) have developed a new method to help organizations better train their employees to avoid phishing attacks.  This new method is being called the Phish Scale.  The Phish…

According to IBM researchers, a relatively new botnet called Mozi made up 90% of the Internet of Things (IoT) network traffic observed between October 2019 and June 2020. Mozi has been effective through the use of command injection attacks, which depend…

A cyberattack on a hospital led to the death of a woman in need of urgent medical treatment. Attackers caused IT systems at the Düsseldorf University Clinic (DUC) to crash, resulting in a woman seeking medical care at the hospital having to be…

The operators of Maze ransomware have started distributing ransomware payloads via virtual machines (VM).  Researchers at Sophos Managed Threat Response believe that the adversaries distribute the ransomware using virtual machines because it should…

As the US 2020 election draws closer, some states are calling on the National Gaurd to help protect the election process against various threats, ranging from nation-state actors to garage hackers. The National Gaurd will conduct network intrusion…

NetWalker, REvil, SunCrypt, and Pysa (also known as Mespinoza) ransomware hacking groups posted data on the dark web, allegedly stolen from Assured Imaging, University Hospital New Jersey, National Western Life, The College of Nurses of Ontario, and…

Quick Response (QR) codes are booming in popularity due to the coronavirus.  Since more people are using QR codes, hackers are flocking to exploit the trend. In a new study, researchers found that many people are unaware that adversaries can easily…