A security flaw on the US Postal Service (USPS) website that was discovered by a researcher more than a year ago has been fixed. The vulnerability exposed personal information belonging to 60 million users of the USPS website. This article continues to…

A warning has been issued by the US-CERT pertaining to the recent increase in phishing attacks and web-skimming attacks leading up to Black Friday and Cyber Monday. These attacks are aimed at stealing financial details such as payment card information…

A researcher from Privacy4Cars has discovered a new vehicle hack, called CarsBlues. The hack abuses vulnerabilities contained by infotainment systems in modern vehicles via the Bluetooth protocol. The use of this hack by attackers can enable them to…

The website for the Make-A-Wish Foundation was recently hit by a cryptojacking attack. The attack was discovered by a security researcher at Trustwave SpiderLabs, named Simon Kenin. According to Kenin, the malicious actors behind the cryptojacking attack…

Mobile security has become a major concern for companies as employees continue to access corporate data from their smartphones, increasing the risk of such sensitive information getting exposed to hackers. There are threats to mobile security that…

Army scientists have discovered a new way in which quantum information can be protected while it is being transmitted. The discovery of this method increases the possibility of secure communication and authentication for soldiers. This article continues…

Security firms are cautioning consumers about the expected spike in holiday cyber crimes. Although this slight increase in holiday cyber threats is not unusual at this time of year, security firms predict the use of new cyberattack methods during this…

According to John Toterhi, a security researcher at Finite State, making IoT firmware more transparent is the key to strengthening IoT device security. IoT device manufacturers are encouraged to allow their firmware to be public and follow GPL practices…

New research reveals the advancement of phishing tactics by Russian hacking groups. Researchers have brought further attention to the development of new phishing schemes used by hacking groups, APT 28 and APT 29. This article continues to discuss the…

The detection of the abuse of API access by malicious actors remains a major concern among security and IT professionals as indicated by the results of a survey conducted by Ping Identity. A large percent of security and IT professionals that…

According to Proofpoint researchers, the threat group known as TA505 has been testing new malware, called tRat, on commercial banks and other financial institutions. The remote access trojan allows hackers to perform reconnaissance. This article…

A bill has been passed by Congress, which aims to reorganize DHS’ National Protection and Programs Directorate (NPPD) into a Cybersecurity and Infrastructure Security Agency (CISA). The responsibilities of CISA include leading programs that protect…