New research was conducted by NSS Labs to discover how good Google Chrome, Microsoft Edge, Mozilla Firefox, and Opera were at providing malware protection and phishing protection.  The researchers found that phishing protection rates ranged from 79.…

U.S., U.K., and Canadian government officials warn that the Russian government hacking group known as Cozy Bear or APT29 has been targeting coronavirus vaccine research.  They have targeted organizations in all three countries.   The hacking is…

Researchers from the security firm, Darktrace, have reported attackers' use of fraud alerts in a phishing campaign that targets Chase customers. According to Darktrace, the emails in this campaign contain legitimate Chase URLs and images. These…

According to research by Akamai, the number of credential stuffing attacks against media and video companies increased significantly. The company found that the media industry experienced 17 billion credential stuffing attacks between January 2018 and…

Fake Cisco devices led to the failure of an IT company's network switches following a software upgrade, further highlighting the threat posed by counterfeit hardware. An investigation of the incident by F-Secure's hardware security team revealed two…

Researchers in a study conducted in 2019 found that most companies allow mobile devices to access between 1/3 and 3/4 of their most business-critical information.  The BYOD trend where people use their personal devices for work activities was on the…

The knock code authentication scheme, popularized by LG in 2014, is not as safe or effective as users think. Knock codes allow smartphone owners to create tap patterns that they could use to unlock their phone. A team of researchers from the New Jersey…

Microsoft is issuing a patch for a 17-year-old wormable Windows Domain Name System (DNS) Server vulnerability discovered by a researcher at Check Point. The exploitation of the DNS Server flaw would allow attackers to intercept users' emails and network…

Researchers have discovered that there are more than 15 billion stolen account credentials that are up for sale on cybercrime forums.  Five billion of the stolen credentials up for sale are considered unique, meaning that they have not been offered…

A security researcher was able to extract audio and video from a used Axon body camera they purchased on eBay. The researcher extracted unencrypted data from the camera's microSD card using a forensics tool developed by the Air Force Office of Special…

SAP has disclosed to its customers a critical vulnerability that has scored a severity score of 10 out of 10 on the CvSS bug-severity scale.  SAP has a widely deployed collection of enterprise resource planning (ERP) software, which clients use to…

Deepfakes are fake images, audio recordings, or videos developed using Machine Learning (ML). The continued advancement of deepfakes will decrease the effectiveness of security systems that apply facial recognition technologies for authentication.…