The White House has given federal agencies 30 days to remove TikTok from all government-issued devices following the December 2022 ban on the social media app.  The announcement comes from Shalanda Young, director of the office of management and…

Security researchers at Rapid7 discovered that in 2022, the widespread exploitation of new vulnerabilities was down 15% over the previous year, zero-day attacks declined 52% from 2021, and there were 33% fewer vulnerabilities known to have been exploited…

Jen Easterly, the head of the US Homeland Security Department's Cybersecurity and Infrastructure Security Agency (CISA), recently talked about the cyber threats posed by China, warning of dire consequences if technology manufacturers fail to improve the…

Security experts are warning that remote workers in the UK capital are being bombarded with cyberattacks after recording 91 million threats over a 28-day period in January. Insurer Coalition set up a series of honeypots in a project with police non-…

The Danish parliament recently urged lawmakers and employees with the 179-member assembly against having TikTok on work phones as a cybersecurity measure.  The popular video-sharing app, which is Chinese-owned, faces intensifying scrutiny from…

According to new research, pet and animal-related apps pose cybersecurity risks to their owners. Many pet owners may find the ability to track their cats and dogs appealing since it can bring peace of mind. However, enabling a third party to track their…

Researchers at Trend Micro discovered a new wave of attacks crafted to distribute the PlugX Remote Access Trojan (RAT) disguised as the open-source Windows debugger x32dbg. The legitimate tool enables the examination of kernel-mode and user-mode code,…

According to CrowdStrike's annual Global Threat Report, adversaries have become more sophisticated and destructive in their cyberattacks. Malware activity has declined, indicating that threat actors are experimenting with alternative means of attack.…

The United States Marshals Service (USMS) was recently hit with a ransomware attack.  The incident occurred on February 17.  According to a USMS spokesperson, shortly after the discovery, the USMS disconnected the affected system, and the…

The Russia-Ukraine conflict has impacted cyberspace on all levels, from nation-state Advanced Persistent Threats (APT) groups to low-level carders on Dark Web forums. A new report from Recorded Future details the numerous cyberspace repercussions of that…

LastPass has disclosed additional details on the security incident relating to the compromise of its development environment in August 2022 and subsequent unauthorized access to the company's third-party cloud storage provider that held backups. The…

Exfiltrator-22 is a new post-exploitation framework being promoted by threat actors to spread ransomware across corporate networks while evading detection. According to threat analysts at CYFIRMA, this new framework was developed by former LockBit 3.0…