The French government has recently announced plans to ban “recreational” apps, including TikTok, Netflix, Instagram, Candy Crush, and Twitter, from officials’ devices.  The move will be monitored by the National Cybersecurity Agency of France (ANSII…

A new study conducted by researchers at the University of East Anglia's School of Psychology demonstrates how simple repetition can cause individuals to overshare, exposing themselves to the risk of identity theft and cybercrime. The research team…

Apple recently announced fresh security updates for macOS and iOS, including patches that address an exploited vulnerability in older iPhone models.  The issue tracked as CVE-2023-23529 was initially addressed as a zero-day in mid-February, with the…

A Nigerian man has recently been handed a four-year jail sentence for his role in a multinational criminal gang that scammed countless individuals and businesses over several years.  Solomon Ekunke Okpe, 31, of Lagos, worked with others on business…

Toyota Italy leaked sensitive information for over one-and-a-half years, until March of this year. It revealed secrets for its Salesforce Marketing Cloud and Mapbox Application Programming Interfaces (APIs). On February 14, the Cybernews research team…

Microsoft is implementing a new security feature for Exchange Online that will automatically start throttling and eventually block all emails sent from "persistently vulnerable Exchange servers" 90 days after the admins are pinged to secure them. These…

President Joe Biden has signed an executive order prohibiting federal agencies from using commercial spyware that poses a security risk to the US or has already been abused by foreign actors. The executive order, which has been in the works for months,…

Shadow Information Technology (IT) teams, also known as rogue IT teams, have become more prevalent in recent years because of the rise of cloud-based apps and remote work. This has led to operational stress and security risks within many companies.…

Based on a DMCA Takedown request filed on March 24, some of Twitter's proprietary source code had been publicly accessible on GitHub for nearly three months. On March 24, GitHub honored a Twitter employee's request to remove "proprietary source code for…

A new phishing campaign is targeting European entities to distribute Remcos RAT and Formbook using DBatLoader, a malware loader. According to Zscaler researchers, the malware payload is delivered through WordPress websites with authorized SSL…

In the past year, interest has increased in generative Artificial Intelligence (AI) - deep learning models that can generate text, images, and other forms of content. However, like with every technological breakthrough, generative AI poses new security…

Three researchers at CyLab, Carnegie Mellon University's security and privacy institute, recently received National Science Foundation (NSF) Faculty Early Career Development Program (CAREER) awards. Wenting Zheng, an assistant professor in the Computer…