Two new guides called the 2018 Cyber Security Division Portfolio Guide and the 2018 Cyber Security Division Technology Guide have been released by the Department of Homeland Security (DHS) Science and Technology Directorate (S&T). The guides aim to…

A new computer algorithm that could be used to mitigate the impact of GPS spoofing attacks faced by electrical power grids and other GPS-enabled devices has been described in a recent study conducted by researchers from the UTSA Department of…

Cybercriminals behind the launch of GandCrab ransomware, which has infected more than 50,000 victims have adopted an agile development approach for the evolution of this malware. An assessment conducted by Check Point of the different versions of…

The threat of cryptojacking, also known as the unauthorized mining of cryptocurrency, continues to grow. According to Secureworks, the value of the cryptocurrency market has grown significantly in conjunction with the rise of crypto-mining malware in…

A study conducted by researchers at Ben-Gurion University of the Negev reveals that sound output devices such as computer speakers, headphones, earbuds, and more could be used to extract and send data between air-gapped computers. The new method called…

Security researchers at CTS-Labs claim to have discovered 13 critical security flaws contained by AMD’s Ryzen and EPYC processors. According to the researchers, the exploitation of vulnerabilities found within AMD’s Ryzen and EPYC chips would allow…

Cyber researchers at Ben-Gurion University of the Negev discovered major security vulnerabilities within off-the-shelf IoT devices such as baby monitors, thermostats, security cameras, and more through the dismantling and reverse engineering of such…

SoS Musings #12 The Trouble with Data

Researchers at Purdue University and the University of Iowa discovered 10 new types of attacks upon assessment of their proof-of-concept penetration testing toolset by the name of LTEInspector on 4G LTE networks. The security flaws discovered to be…

Security researchers have discovered a new cyber-espionage threat called Slingshot in which MikroTik routers were used to infect the computers of around 100 victims in the Middle East and Africa. The routers targeted by the Slingshot APT were used to…

DDoS attacks in which a targeted system is flooded with traffic in order to disrupt operations and availability of services, continues to grow in volume and creativity. The many different variations and elements of DDoS attacks pose a significant…

Security researchers at IOActive have demonstrated that it is possible to infect robots with ransomware. Two robots developed by SoftBank named Pepper and Nao can be hacked through the exploitation of unprotected modules within their functions. This…