A warning has been issued by the Food and Drug Administration (FDA) pertaining to the vulnerability of pacemaker programmers to being accessed by hackers. The FDA specifically warns of the vulnerability of two models of programmers manufactured by…

The poor practice of reusing passwords to log into multiple websites increases organizations' risk of exposure in a third-party breach. A study conducted by researchers at Indiana University calls for more stringent password policies in which passwords…

Hackers have taken on a sneakier approach to distributing malware for cryptocurrency-mining. According to Palo Alto Networks' Unit 42 threat research team, new strains of cryptomining malware are now being delivered via fraudulent Adobe Flash updates.…

A link between Industroyer ICS malware that disrupted the operation of Ukraine's power grid in December 2016 and NotPetya ransomware has been discovered by ESET researchers. Evidence found by researchers suggests that the group behind the NotPetya…

Symantec has discovered a cyber espionage campaign in which custom malware is not used. The new threat group behind the cyber espionage campaign, dubbed Gallmaker, makes use of publicly available hacking tools and living-off-the-land tactics to carry out…

A recent report from Bloomberg alleged that China infiltrated the hardware supply chain to spy on over 30 U.S. companies including Apple and Amazon. This incident highlights the threats and challenges posed by supply chain attacks. This article continues…

An in-depth security analysis of the 5G mobile communication standard by researchers in the Information Security Group has revealed security gaps in the new standard. Although the 5G standard is an improvement over previous standards in terms of…

Cybersecurity researchers at McAfee and the Center for Strategic and International Studies have suggested that government modernizes Social Security numbers as this identifier has become increasingly vulnerable to cyberattacks and being breached. A Smart…

Two projects called the Compile to Combat in 24 Hours and CYBERSAFE aim to bolster the U.S. Navy’s cybersecurity. Compile to Combat in 24 Hours is a project that aims to strengthen cybersecurity through data standardization, shared infrastructure,…

The NYC Economic Development Council (NYCEDC) plans to improve upon its cybersecurity sector through the Cyber NYC initiative, which includes the development of a Global Cyber Center. The Global Cyber Center will provide a virtual testing…

The researchers that discovered the Wi-Fi Protected Access II (WPA2) protocol to be vulnerable to key reinstallation attacks (KRACKs) in 2017, recently detailed new variants of these attacks. According to researchers, the new KRACK variants are able to…

More than 100,000 home routers have been hijacked through the launch of GhostDNS malware by an unknown attacker in order to perform phishing. Devices that have been targeted by the GhostDNS campaign have mainly been located in Brazil. This article…