According to US law firm BakerHostetler, lawsuits filed against companies that have suffered a data breach are increasingly common, with action being taken more frequently, even in cases where the number of impacted individuals is smaller.  Last…

The National Institute of Standards and Technology (NIST) is updating its Cybersecurity Framework (CSF) in order to better incorporate topics such as supply chain risk management and governance. The framework, first released in 2014, is a set of…

According to new research by Check Point, weekly cyberattacks have increased worldwide by 7% in Q1 2023 compared to the same period last year, with each firm facing an average of 1248 attacks per week.  The company found that the education and…

The US Air Force Academy successfully defended its title as champions of the National Security Agency's (NSA) annual NSA Cyber Exercise (NCX). The team won a three-day cyber competition that put US service academies, senior military colleges, and NSA…

An analysis of more than 70 billion DNS records resulted in the discovery of Decoy Dog, a new sophisticated malware toolkit aimed at enterprise networks. Decoy Dog is evasive and uses techniques such as strategic domain aging and DNS query dribbling, in…

According to the Computer Emergency Response Team of Ukraine (CERT-UA), Russian hackers are sending malicious emails to different government bodies with instructions on how to upgrade Windows in order to defend against cyber threats. The Russian state-…

According to HUMAN, a global leader in protecting enterprises by disrupting digital fraud and abuse with modern defense, bot attacks were viewed as a relatively insignificant type of online fraud, and that thinking has remained even as threat actors can…

Researchers found five vulnerabilities in servers run by over a dozen major companies, including Huawei, Qualcomm, Nvidia, AMD, Dell, and HP, in December. The flaws had CVSS scores ranging from 5.3 (medium severity) to 9.8 (critical). The flaws reside in…

One company is helping developers research open-source software packages to discover code components that are secure from attacks. Endor Labs, a startup that helps governments and businesses secure open-source software, has released its DroidGPT tool in…

Experts are concerned about the overall impact that new fees for security features on social media accounts will have on overall cybersecurity. Many are questioning whether basic security should be available to all users, regardless of whether they pay…

Carnegie Mellon University's competitive hacking team, the Plaid Parliament of Pwning (PPP), won the top prize at the MITRE Embedded Capture-the-Flag (eCTF) cybersecurity competition for the second year in a row. PPP and 79 other collegiate-level teams…

A team of researchers from the Massachusetts Institute of Technology (MIT) and Stanford University are working on an operating system that includes built-in cybersecurity protection. This new operating system will be resilient against common cyberattacks…