The US Department of Homeland Security (DHS) announced two initiatives that will directly contribute to US strategies for defending critical infrastructure and essential services against cyberattacks, physical attacks, Artificial Intelligence (AI), and…

The Lazarus Group, a notorious state-sponsored threat actor with ties to North Korea, has been linked to a new campaign targeting Linux users. According to a new report by ESET, the attacks are part of a persistent and long-running activity known as…

According to ExtraHop, organizations experienced a considerable increase in ransomware, from an average of four attacks over five years in 2021 to four attacks over one year in 2022. Eighty-three percent of victims confessed to having paid the ransom at…

Attackers are injecting stealthy backdoors into websites using Eval PHP, an outdated WordPress plugin. Eval PHP is an outdated WordPress plugin that enables site administrators to embed PHP code on WordPress pages and posts, which is then executed when…

A security flaw in Google's Cloud Platform (GCP) could have allowed cybercriminals to hide an unremovable, malicious app within a victim's Google account, rendering the account permanently infected. The "GhostToken" vulnerability was identified and…

The 3CX Desktop App software has been reportedly compromised via a prior software supply chain breach, with a North Korean actor suspected to be responsible.  Security researchers at Mandiant stated the initial compromise was traced back to malware…

Irfan Ahmed, Ph.D., provides defenders with digital forensic tools and the knowledge to use them in cybersecurity. Ahmed is an associate professor of computer science and the director of the Virginia Commonwealth University (VCU) Engineering Department…

The Artificial Intelligence (AI) chatbot ChatGPT has been generating a great deal of buzz in the news and on social media regarding its ability to write blogs, software source code, and frameworks. People are sharing what they have done with the Large…

Following a temporary suspension in Italy and several investigations in other European Union countries, OpenAI has just over a week to comply with European data protection laws. Failure to comply could result in costly fines, data deletion…

Cisco recently announced patches for critical vulnerabilities impacting its Industrial Network Director and Modeling Labs solutions.  Designed for industrial network management, Industrial Network Director (IND) provides visibility into network and…

People should be able to securely store their digital information without fear of quantum or faster computers threatening safety. With funding from the National Science Foundation (NSF), computer science professors will use their innovative collaborative…

The US Homeland Security Department's Cybersecurity and Infrastructure Security Agency (CISA) reports that there are about 153,000 public drinking water systems and over 16,000 publicly owned wastewater treatment systems in the US. Therefore, a…