Five vulnerabilities in the Baseboard Management Controller (BMC) firmware used in servers from at least 15 major vendors allow the remote compromise of systems in data centers and for cloud services. Two of the vulnerabilities, disclosed this week by…

Sean Cordey, a former researcher in the Cyberdefense Project within the Risk and Resilience Team at ETH Zürich’s Center for Security Studies (CSS), released a report titled "Software Supply Chain Attacks: An Illustrated Typological Review." The report…

According to new research, Lancashire Constabulary is one of England's worst police forces for suspected data breaches or security incidents.  New figures show that the police force recorded 1,317 incidents of deliberate or accidental destruction,…

Cybercriminal groups are trying to recruit hackers and technology professionals by offering white-collar employment benefits and salaries of up to $1.2 million. Researchers discovered that the growth in cybercrime over the past two years has caused some…

Microchip fabrication plants in the US can fit billions of data processing transistors onto a tiny silicon chip, but a "clock" to time the operation of those transistors must be manufactured separately, thus creating a weak point in chip security and the…

Security researchers at Imperva have discovered that over a quarter of all cyberattacks (28%) in the UK have hit the financial services and insurance (FSI) industry in the last 12 months.  The researchers noted that application programming interface…

A new study from Armorblox researchers warns of a malicious email campaign aimed at stealing login credentials by tricking users into believing attacker-sent emails are from DocuSign. The initial detection of the attack, which targeted more than 10,000…

Two Florida medical professionals have recently been found guilty of various offenses by a federal jury after defrauding the government Medicare scheme out of tens of millions of dollars.  Chiropractor Dean Zusmer, 54, of Miami, was convicted of "…

A popular chain of convenience stores and gas stations exposed employee and customer information to the public. Circle K owner Couche-Tard runs about 14,000 stores globally, and has sold 12 billion liters of gas during the previous quarter. In the US,…

A leading Taiwanese hardware manufacturer is urging its customers to patch a critical vulnerability in devices running the QTS or QuTS hero firmware.  Network-attached storage (NAS) device maker QNAP stated that CVE-2022-27596 impacts QTS 5.0.1 and…

Google Fi has confirmed a data breach, possibly related to the recent security breach at T-Mobile that allowed hackers to steal the information of millions of customers. Google stated in an email to consumers that the primary network provider for Google…

Killnet, a pro-Russia group, has launched a series of Distributed Denial-of-Service (DDoS) attacks against healthcare organizations and hospitals in the US. The group revealed the attacks on its Telegram channel and demanded action against the US…