OpenAI recently announced that it is offering white hat hackers up to $20,000 to find security flaws as part of its bug bounty program launched on April 11, 2023.  The ChatGPT developer announced the initiative as part of its commitment to secure…

Security vendor Sonatype recently detected 6933 malicious open-source packages in the month of March alone, bringing the total discovered since 2019 to 115,165.  The company stated that info-stealers comprised a significant number of these malicious…

Researchers from the CyLab Security and Privacy Institute at Carnegie Mellon University (CMU), the University of Michigan, and Fordham University have made it easy for users to choose how websites use their personal information, all in a single spot. The…

Danish Saleem is a senior energy systems cybersecurity researcher at the National Renewable Energy Laboratory (NREL) who has focused on distributed energy systems, such as rooftop solar panels, that typically serve local customers. These systems…

According to Check Point Research, the education and research sector has experienced a significant increase in attacks against Internet of Things (IoT) devices, with 131 weekly attacks per organization, more than double the global average and a…

When asked about the most serious cyber threats facing their organizations, 43 percent of CISOs placed browsing threats at the top of their list. A new RedAccess report, based on responses from 300 CISOs in the UK and the UK, highlights the impact of…

The world is becoming aware of the threat posed by adversaries equipped with quantum computers. Andersen Cheng, CEO of Post-Quantum, a cybersecurity company specializing in quantum-safe security and identity solutions, believes the OODA framework,…

Software maker Adobe recently shipped patches for at least 56 security vulnerabilities in a wide range of products, some severe enough to expose Windows and macOS users to code execution attacks.  Adobe called special attention to its APSB23-24…

The US Homeland Security Department's Cybersecurity and Infrastructure Security Agency (CISA) has published the second version of the Zero Trust Maturity Model. This version incorporates recommendations from a public comment period and advances the…

Cybercriminals are exploiting the popularity of ChatGPT and Google Bard to spread RedLine Stealer malware and steal sensitive user data. According to Veriti security researchers, one of the most significant concerns associated with generative Artificial…

According to researchers at XM Cyber, only 2% of all exposures enable attackers with seamless access to critical assets, while 75% of exposures along attack paths lead to “dead ends.”  The researchers analyzed over 60 million exposures in over 10…

Microsoft Exchange Server 2013 has reached end of support on April 11, 2023, and will no longer receive security patches.  The product will continue to work even after this date, but Microsoft stated that it is no longer providing technical support…