Governor Kathy Hochul has recently introduced New York's first-ever statewide cybersecurity strategy, reinforced by a $600m commitment.  The initiative is designed to shield critical infrastructure, data, networks, and technology systems from…

The automotive industry is abuzz with the "Internet of Vehicles" (IoV) discussion. This describes a network of cars and other vehicles that can exchange data over the Internet to make transportation more autonomous, safe, and efficient. The IoV could…

A recent cross-border investigation into West African cybercriminal groups has resulted in 103 arrests and the seizure of more than $2.2 million.   Operation Jackal was led by law enforcement agencies across 21 countries on six continents and…

Two security researchers deployed several Windows servers that were deliberately exposed to the Internet. They were set up with Remote Desktop Protocol (RDP), allowing hackers to remotely control the compromised servers as if they were regular users.…

There has been an increase in the use of a Phishing-as-a-Service (PhaaS) toolkit called EvilProxy by threat actors to conduct account takeover attacks targeting high-ranking executives at well-known companies. According to Proofpoint, an ongoing hybrid…

Ukraine warns of a wave of attacks using Merlin, an open-source post-exploitation and command-and-control (C2) framework, against state organizations. Merlin is a Go-based, cross-platform post-exploitation toolkit that is freely available via GitHub and…

The Biden-Harris Administration has launched a two-year competition to protect the most critical software in the US using Artificial Intelligence (AI). The AI Cyber Challenge (AIxCC) calls on competitors across the US to identify and fix software…

An Advanced Persistent Threat (APT) group with ties to Belarus spied on staff in at least four embassies operating in the country, most likely by abusing the country's local Internet Service Provider (ISP). According to malware researcher Matthieu Faou…

MITRE is collaborating with Robust Intelligence, a provider of Artificial Intelligence (AI) solutions, to improve a free tool that helps organizations assess the supply chain risks of publicly available AI models online. Indiana University is also…

Computer Science and Engineering (CSE) researchers from the University of Michigan are presenting their papers at the 32nd USENIX Security Symposium. The university has compiled a list of papers authored by the CSE researchers being presented at the…

Cybernews researchers found an address that shed light on WordPress-orientated "hack waves" caused by the Balada Injector malware. Evidence indicates that the malware is still highly active, evading security software by using new domain names and small…

The LockBit ransomware group claims to have targeted the healthcare company Varian Medical Systems, Inc. The group threatens to leak cancer patients' medical records stolen from the healthcare company. Varian Medical Systems, Inc. designs, manufactures,…