According to Rubrik, nearly all Information Technology (IT) and security leaders are concerned that their organization will be unable to maintain business continuity following a cyberattack. The complexity of data security is growing, and the number of…

Hackers are infiltrating inadequately protected and Internet-exposed Microsoft SQL (MS-SQL) servers in order to deploy Trigona ransomware and encrypt all files. The MS-SQL servers are being compromised by brute-force or dictionary attacks that exploit…

Researchers discovered that fitness apps such as Strava leak sensitive location information of users, even when they have used in-app features to specifically set up privacy zones to conceal their activity within specified areas. Two Ph.D. students from…

E2EE was proposed as an additional layer of encryption for the Global System for Mobile Communication and Terrestrial Trunked Radio mobile communications standards when the need and value of private and secure communications came of age. Nearly all…

GitHub is launching a new feature that enables the collaboration between security researchers and developers in quickly and privately resolving vulnerability reports. The private vulnerability reporting channel makes it easier for researchers to submit…

Researchers continue to work toward realizing a future populated by autonomous vehicles, but the threat of cyberattacks is one of the most pressing issues to resolve. To address this critical issue, a new research team is exploring methods to mitigate…

Professor of Electrical and Computer Engineering and Computer Science at Purdue University, Saurabh Bagchi, has provided insights into ChatGPT's implications for online security and privacy. ChatGPT is already being used to launch security attacks, such…

The US Homeland Security Department's Cybersecurity and Infrastructure Security Agency (CISA), the National Security Agency (NSA), and the FBI are collaborating with international partners' cybersecurity agencies to publish cybersecurity best practices…

Denis Mihaqlovic Dubnikov, the Russian national who recently pleaded guilty to charges related to laundering money for the Ryuk ransomware group, has been sentenced to time served.  The Department of Justice (DoJ) stated that Dubnikov laundered…

Cybersecurity professionals need help remembering all the various names companies use to refer to threat actors. For example, some use a number system, while others use colors, animals, and adjectives such as "fancy" and "charming." Microsoft has…

The National Cyber Security Centre  (NCSC) is warning organizations operating Critical National Infrastructure (CNI) to be prepared for destructive cyberattacks launched by Russia-aligned adversaries armed with sophisticated technology. In the past…

Researchers from Finland's Aalto University published a report titled "Cyber Citizen Skills and Their Development in the European Union," urging EU member states to develop a unified, people-centered approach to cyber skills and cybersecurity. It was…