According to a recent survey by the Neustar International Security Council (NISC), only 49 percent of firms have a sufficient budget to fully satisfy their present cybersecurity needs, and 11 percent can protect only their most critical assets. Despite…

Perforce Software and the Open-Source Initiative report that 80 percent of organizations have increased their use of open-source software over the past year. Four out of five organizations rely on open-source software for various mission-critical…

UCHealth in Aurora, Colorado, recently reported a third-party data breach to HHS that impacted 48,879 individuals.  According to its notice to patients, UCHealth was informed by software company Diligent that some patient, provider, and employee…

Keylime and the Forensic Video Exploitation and Analysis (FOVEA) tool suite, both developed by MIT Lincoln Laboratory to enhance security, have been awarded 2023 Excellence in Technology Transfer Awards by the Federal Laboratory Consortium (FLC). Keylime…

Researchers at Sonar have found three separate vulnerabilities in OpenEMR, an open-source software for electronic health records and medical practice management.  The researchers stated that a combination of these vulnerabilities allows remote…

Using quantum computing, researchers recently made a breakthrough that makes cracking the RSA encryption scheme possible. A team of researchers in China reported discovering a factorization method that could crack a 2,048-bit RSA key using a quantum…

Printer and imaging products manufacturer Lexmark recently published a security advisory to warn users of a critical vulnerability impacting over 120 printer models.  The issue, tracked as CVE-2023-23560 (CVSS score of 9.0), is described as a server…

Two university researchers suggest that tracking the early activities of hackers using open-source intelligence can provide major hints about the potential of them becoming a persistent threat in the future. They emphasized that this information can lead…

Nearly 400,000 individuals' sensitive information was compromised by two hacking incidents, one of which occurred at a non-profit provider of mental health and substance treatment services and the other at a provider of behavioral health services. The…

Following the shutdown of the Hive ransomware operation by law enforcement, the US government is now reminding the public that a reward of up to $10 million is offered for information on cybercriminals.  On Thursday, authorities in the United States…

Cybernews researchers discovered sensitive data hardcoded into the client side of the popular Guidus game app, leaving it vulnerable to data leaks. Guidus is a mobile game with over 100,000 downloads on the Google Play store. Researchers found that…

The Internet Systems Consortium (ISC) recently announced patches for multiple high-severity denial-of-service (DoS) vulnerabilities in the DNS software suite BIND.  The addressed issues could be exploited remotely to cause named (the BIND daemon…