A new report from the Government Accountability Office (GAO) calls on the US Department of Energy (DOE) to take additional steps to prevent insider threats to the nation's nuclear arsenal, including identifying the total number of classified networks…

The UL Hospitals Group (ULHG), which runs six hospitals in the mid-west region, has recently announced that it is writing to more than 1,000 patients whose personal and medical information was inadvertently shared with an unknown third party in a data…

Mikhail Matveev is a Russian national whom prosecutors accused of wielding three ransomware strains. In addition to hacking hospitals and schools, Matveev allegedly caused a shortage of cheese in the Netherlands through a ransomware attack. Matveev is…

Organizations using Moxa’s MXsecurity product have been informed about two potentially serious vulnerabilities that could be exploited by malicious hackers targeting operational technology (OT) networks.  MXsecurity is an industrial network security…

The Hillsborough County Supervisor of Elections office recently sent notification letters to thousands of voters impacted by a data breach.  This county is located in Florida. According to the office, a cybercriminal stole the personal…

As NASA's Artemis program, China's Tiangong Space Station, and a growing number of space-tourism companies prepare to usher in a new era of human spaceflight, more attention is needed for cybersecurity in space. Cyber threats to crewed spacecraft may…

Amazon will pay close to $31m to the Federal Trade Commission (FTC) to settle allegations relating to Alexa and its Ring home security business.  The larger of the two civil penalties ($25m) will settle charges that Amazon violated the US Children’s…

Security researchers at Rapid7 are urging Zyxel networking device users to update their firewalls and VPNs after it was discovered that hackers are actively exploiting a vulnerability in the wild to enable remote code execution.  The Taiwanese…

According to regulatory filings, an April ransomware attack on the biotech company Enzo Biochem compromised the test information and personal data of nearly 2.5 million individuals. Enzo Biochem, a biosciences and diagnostics company based in New York,…

Researchers have uncovered a novel attack on the Python Package Index (PyPI), the official repository of third-party open-source Python projects. The attack uses compiled Python code to evade detection by application security tools. ReversingLabs analyst…

The stealthy Remote Access Trojan (RAT) called "SeroXen" is gaining popularity among cybercriminals due to its low detection rates and effectiveness. AT&T reports that the malware is marketed as a legitimate remote access tool for Windows 11 and 10.…

According to Mitiga researchers, Google Workspace has a vulnerability that prevents the discovery of data exfiltration from Google Drive. Using 'Drive log events,' Google Workspace provides visibility into an organization's Google Drive resources,…