News
-
"Cryptojacking Gang TeamTNT Makes a Comeback"Researchers found new activity conducted by "TeamTNT" dating back to 2023, even though the group was believed to have disappeared in 2022. -
"Windows Users Targeted With Fake Human Verification Pages Delivering Malware"Fake human verification pages are tricking Windows users into installing malware. Palo Alto Networks' Unit 42 found seven fake CAPTCHA-style human verification pages in late August 2024. -
"Clever 'GitHub Scanner' Campaign Abusing Repos to Push Malware"A new phishing campaign is using GitHub repositories to spread the "Lumma Stealer" password-stealing malware to those who frequent or receive email notifications from an open source project repository. -
"Preventing Ransomware by Fully Remediating Infostealer Attacks"According to SpyCloud's "2024 Malware and Ransomware Defense Report," ransomware attacks often use data stolen through previous infostealer infections, emphasizing the need to remediate all malware infections thoroughly. -
Virtual Institutes Mid-Year Meeting SummaryThe Science of Security (SoS) Virtual Institutes (VIs) held their Mid-Year meeting at the International Computer S -
"Preparing Neurodivergent Learners for Cybersecurity Careers"Researchers at the University of Missouri are developing a Virtual Reality (VR) platform named "USucceed" to help teach cybersecurity to people with autism, dyslexia, attention deficit disorders, and other neurodevelopmental differences. -
"Identifying What's 'Not Normal' Could Help Protect Electric Power Systems"Cybersecurity researchers at the Georgia Institute of Technology (Georgia Tech) seek to identify "abnormal" and "illogical" control system commands suggesting the presence of insider threats or malicious attackers. -
"College of Education Researchers to Integrate Cybersecurity with Math, Science Lessons through $2 Million Grant-funded Project"Researchers at North Carolina State University are conducting a project to raise awareness among young students about the safety risks that come with being online, as well as prepare elementary school teachers to teach cybersecurity topics. -
"For Just $20, Researchers Seize Part of Internet Infrastructure"Researchers at watchTowr showed the ability to seize part of the Internet's infrastructure for just $20, bringing attention to the fragility of the trust and cybersecurity mechanisms that organizations and users depend on. -
"Apple Patches Vision Pro Vulnerability to Prevent GAZEploit Attacks"Apple has patched its Vision Pro Mixed Reality (MR) headset after researchers showed that an attacker could track a user's eyes to infer what they are typing. -
"TrickMo Android Trojan Exploits Accessibility Services for On-Device Banking Fraud"Researchers at Cleafy found a new variant of the Android banking trojan called "TrickMo" that can evade analysis and display fake login screens to steal victims' banking credentials. -
"Socially Savvy Scattered Spider Traps Cloud Admins in Web"One of the most dangerous ransomware groups, "Scattered Spider," has been using its clever social engineering approach to launch targeted, sophisticated phishing attacks against financial and insurance companies to steal high-level cloud permissions an