Since at least September 2022, a new attack campaign has been targeting the gaming and gambling industries. The cybersecurity firm Security Joes is monitoring the activity cluster named "Ice Breaker," saying that the attacks use social engineering…

HoTSoS 2023: Registration Open March 7th! The Hot Topics in the Science of Security (HoTSoS) Symposium is a research event centered on the Science of Security, which aims to address the fundamental problems of security in a principled manner.…

Since September 2021, new stealthy malware dubbed HeadCrab has infected over 1,000 vulnerable Redis servers in order to form a botnet that mines the Monero cryptocurrency. The malware, discovered by Aqua Security researchers, has infected at least 1,200…

Some of Cisco's industrial routers, gateways, and enterprise wireless access points were discovered to contain a high-severity vulnerability, tracked as CVE-2023-20076. This now-patched vulnerability could be used to inject malicious code that cannot be…

The North Korean Lazarus Group launched a cyberattack campaign against medical research and energy organizations for espionage purposes. The attribution was made by threat intelligence analysts at WithSecure, who uncovered the campaign while…

A suspected ransomware attack on a key supplier of trading software to the City of London this week appears to have disrupted activity in the derivatives market.  Ion Cleared Derivatives released a brief statement on Tuesday saying that it…

Security researchers at SaiFlow, warn that many electric vehicle (EV) charging management systems are affected by vulnerabilities that could allow hackers to cause disruption, steal energy, or obtain driver information.  The security holes are…

UK-based car retailer Arnold Clark is informing customers that their personal information may have been stolen as a result of a cyberattack.  Arnold Clark has more than 200 dealerships in England and Scotland, selling vehicles from over 25…

Gregory Falco, an assistant professor at the Johns Hopkins Institute for Assured Autonomy and the Whiting School of Engineering's Department of Civil and Systems Engineering, explains why there needs to be a new system for satellites in order to enable…

ChristianaCare's public website experienced a cyberattack on Tuesday.  The company stated that the distributed denial-of-service or DDoS attack is consistent with other incidents reported by healthcare organizations around the world this week.…

DuckLogs is a new Malware-as-a-Service (MaaS) operation that provides low-skilled attackers with easy access to several modules to steal information, log keystrokes, read clipboard data, and get remote access to a compromised host. A recent Cyble…

For the second day in a row, public schools on the tiny island of Nantucket remained closed Wednesday as administrators scrambled to cope with a ransomware attack on its computer systems.  Nantucket’s five public schools shut their doors to students…