According to researchers at Synopsys, more than four out of five (84%) codebases contain at least one known open source vulnerability.  The researchers noted that this is almost a 4% increase compared to last year.  The researchers also found…

Jamf security researchers have detailed a family of malware that infects pirated macOS applications and mines cryptocurrency. The malware uses XMRig, an open-source command-line cryptocurrency mining tool. Researchers first discovered XMRig in a pirated…

Digital twins, which are detailed virtual copies of physical objects, are paving the way for better products in healthcare, aerospace, and other industries. A new study suggests that cybersecurity may also fit perfectly into the digital twin portfolio.…

The European Union's executive branch said Thursday that it has temporarily banned TikTok from phones used by employees as a cybersecurity measure, reflecting widening worries from Western officials over the Chinese-owned video-sharing app.  The…

The MyloBot botnet has been in operation since 2017 and was first detailed in 2018 by the cybersecurity firm Deep Instinct. MyloBot is described as an evasive Windows botnet that employs sophisticated anti-analysis methods. The first sample of the bot…

An active malware campaign has been targeting Facebook and YouTube users through a new information stealer aimed at taking over accounts and exploiting system resources for cryptocurrency mining. Bitdefender dubbed the malware S1deload Stealer due to its…

A Russian national accused of developing a piece of malware named NLBrute has recently been extradited to the United States from the Eastern European country of Georgia.  The suspect, Dariy Pankov, aka dpxaker, was extradited from Georgia in October…

Researchers have spotted a hacker group, tracked as Clasiopa, targeting companies in the materials research industry with a Remote Access Trojan (RAT) called Atharvan. According to Symantec, there are clues pointing to Clasiopa being an Indian threat…

Rezilion discovered hundreds of Docker container images with vulnerabilities that are not recognized by most standard vulnerability scanners and Software Composition Analysis (SCA) tools. Several high-severity/critical vulnerabilities were discovered in…

Cisco recently informed customers about the availability of patches for two high-severity vulnerabilities affecting components of its Application Centric Infrastructure (ACI) software-defined networking solution.  Cisco noted that one of these flaws…

Scammers are capitalizing on the popularity of ChatGPT, an Artifical Intelligence (AI) for Natural Language Processing (NLP), by impersonating it in order to infect victims with Fobo Trojan malware and steal corporate account login information.…

The advanced wireless systems that make driver assistance and autonomous driving systems possible are vulnerable to cyberattacks. Hanif Rahbari, assistant professor of computing security at Rochester Institute of Technology, was recently awarded the…