A security engineer at Evolution Gaming discovered a critical remote-code execution (RCE) vulnerability in the popular Slack collaboration app, which has now been patched. The vulnerability could have allowed attackers to gain full remote control over…

NCR Corporation, the popular point-of-sale and ATM software developer, has confirmed that computers in an isolated non-production lab have been infected with malware, potentially posing a supply-chain risk to customers. The malware was identified as…

Security researchers Patrick Wardle and Peter Dantini discovered that Apple's macOS app notarization process inadvertently approved Mac malware disguised as a Flash player. The notarization would result in the circumvention of Apple's built-in Gatekeeper…

Researchers at CyberNews hacked 28,000 printers to highlight how easy it is to compromise them and the importance of improving security for such devices. They found that more than 800,000 printers could be accessed over the internet. Out of a sample…

Nuspire released a new report on cybercriminal activities, tactics, techniques, and procedures observed in the second quarter of 2020. According to the report, new challenges for security administrators are continuing to emerge as organizations settle…

According to a new report from IRONSACLES, there has been a significant increase in successful credential theft attempts via spoofed login pages and social engineering attacks in the first half of the year, most of which targeted those working in the…

A study conducted by Mozilla researchers has confirmed that browsing histories can be employed to track users by compiling unique browsing profiles. They collected browsing data from 52,000 Firefox users for two weeks. The examination of the…

Peter Maurer, the president of the International Committee of the Red Cross (ICRC), has brought further attention to the increased execution of sophisticated cyberattacks against hospitals, electricity and water supplies, and other critical civilian…

QBot Trojan operators are using new tactics to hijack legitimate, emailed conversations to steal credentials and financial data.  Researchers at Check Point warn that Microsoft Outlook users are susceptible to a module designed to collect and…

Concerns surrounding misinformation continue to grow among cybersecurity professionals as the amount of online misinformation and fake domains rise. A new report by the Neustar International Security Council (NISC) reveals that nearly half of…

A Dutch researcher discovered nine separate files of highly sensitive personal health information (PHI) from apps such as Office 365 and Google G Suite from nine different health organizations on GitHub.  The nine files included 200,000 patient…

Researchers at Snyk, a developer security company, claim to have discovered malicious code in different iOS versions of an advertising Software Development Kit (SDK) developed by Mintegral, a China-based mobile advertising platform provider with offices…