The Ponemon Institute surveyed organizations in North America, Europe, the Middle East, Africa, and Asia-Pacific for its new report on insider threats. Researchers interviewed 1,004 Information Technology (IT) and IT security professionals from 278…

Ransomware attackers recently turned up the heat on a small Virginian university by hijacking a staff/student alert system to warn of a major impending data leak.  Bluefield University discovered an attack on its IT systems on April 30, ahead of…

A researcher has found that the London-based outsourcing company Capita left a large amount of data exposed online for seven years, just weeks after the company admitted to having experienced a data breach that could have affected customer information.…

According to Europol, European police have arrested scores of suspects and seized thousands of stolen artifacts after a joint physical and cyber operation last year. Operation Pandora VII involved police from Austria, Bulgaria, the Czech Republic,…

Fleckpe, a new Android subscription malware, has been downloaded over 620,000 times. According to researchers, Fleckpe is now among other infamous Android spyware, such as Jocker and Harly, that enrolls users in premium services to generate illegal…

Fortinet recently announced its monthly set of security updates that address nine vulnerabilities in multiple products, including two high-severity bugs in FortiADC, FortiOS, and FortiProxy.  Impacting the FortiADC application delivery controller,…

Researchers have discovered leaked firmware image signing keys and Intel Boot Guard keys for MSI products. According to Alex Matrosov, CEO of the firmware supply chain security platform Binarly, the leaked firmware keys impact 57 MSI products, while the…

In a global cyber espionage campaign, the North Korean hacking group Kimsuky has been observed using a new version of its reconnaissance malware, now known as ReconShark. According to Sentinel Labs, the threat actor is now targeting government…

Since at least 2019, Italian corporate banking clients have been the target of an ongoing financial fraud campaign involving a new web-inject toolkit called drIBAN. According to Cleafy researchers, the primary objective of drIBAN fraud operations is to…

Satori has released Universal Data Permissions Scanner (UDPS), a free, open-source tool that allows companies to identify which employees have access to which data, thereby mitigating the risks associated with overprivileged or unauthorized users and…

After a cyberattack by the Royal ransomware group, city government systems in Dallas are still not entirely functional. The City of Dallas has confirmed the ransomware attack, but has assured residents that police and fire rescue services will continue…

Cyberattacks against industry and critical infrastructure are increasing globally. Targets of these cyberattacks also include ships, which contribute to international supply chains by transporting billions of tons of products annually. However, ships' on…