The leading research agency of the Intelligence Community is moving forward with a plan to create new cybersecurity defenses by exploiting the decision-making biases and cognitive weaknesses of would-be hackers. Reimagining Security with Cyberpsychology-…

A multifaceted fight against Artificial Intelligence (AI) has been ignited. Several prominent organizations questioned the risks inherent in the largely unregulated manner in which emerging Large Language Models (LLMs) such as OpenAI's ChatGPT and…

Google and other companies will develop and launch new initiatives aimed at providing policy guidance to governments and legal protection to security researchers engaged in "good faith" vulnerability research and disclosure. The tech giant also announced…

According to security researchers at Check Point, the Emotet malware has continued to climb the rankings of Check Point’s Most Wanted Malware List in March thanks to a new campaign relying on spam emails containing a malicious OneNote file.  The…

The US Homeland Security Department's Cybersecurity and Infrastructure Security Agency (CISA) has announced the release of the "Considerations for Cyber Disruptions in an Evolving 911 Environment" document. Nationwide, Emergency Communications Centers (…

A cyberattack has exposed personal data for thousands of Iowans who receive Medicaid.  The Iowa Department of Health and Human Services recently revealed that the breach that occurred last summer was part of an attack on a contractor's computer…

Video surveillance giant Hikvision recently informed customers that it has patched a critical vulnerability affecting its Hybrid SAN and cluster storage products.  The vulnerability tracked as CVE-2023-28808 has been described by the vendor as an…

According to security researchers at Cybersixgill, the volume of compromised credit cards offered for sale on cybercrime markets has dropped sharply over the past few years, although UK figures rose.  The security firm collects 10 million "…

A KYOCERA Android printing app has been found to be vulnerable to improper intent handling, which enables malicious apps to exploit the vulnerability to download and potentially install malware on affected devices. According to a security advisory…

The US Homeland Security Department's Cybersecurity and Infrastructure Security Agency (CISA), the National Security Agency (NSA), and the FBI are collaborating with the cybersecurity agencies of international partners to encourage the development of…

According to NETSCOUT, HTTP/HTTPS application-layer attacks have increased by 487 percent since 2019, with the most significant increase occurring in the second half of 2022. Much of the increase stems from the pro-Russian group Killnet and other groups…

Legion, a new Python-based credential harvester and hacking tool, is being marketed via Telegram as a means for threat actors to infiltrate different online services for further abuse. Cado Labs reports that Legion includes modules for enumerating…