Microsoft plans on introducing XLL add-in protection for Microsoft 365 customers, which will include the automatic blocking of such Internet-downloaded files. This will help combat the increase of malware attacks exploiting this infection vector.…

BishopFox's Sliver is a legitimate command-and-control (C2) framework that is growing in popularity among threat actors as an open-source alternative to Cobalt Strike and Metasploit. It is a Golang-based, cross-platform post-exploitation framework…

A new report by the US Government Accountability Office (GAO) revealed that out of the 335 public recommendations on a comprehensive cybersecurity strategy made since 2010, 190 were not implemented by federal agencies as of December 2022.  The GAO…

A leading California-based gaming developer has recently admitted that a severe cyberattack on its systems has halted all updates.  Tencent-owned Riot Games produces popular titles like League of Legends and Valorant.  The company stated that…

Emerging technologies such as quantum computers are likely to compromise current information security methods. One of the reasons why they are insecure is that both the encrypted messages and the decryption keys must be sent from the sender to the…

Scientists, mathematicians, and engineers at the Johns Hopkins Applied Physics Laboratory (APL) in Laurel, Maryland, are developing a new cybersecurity paradigm that reflects the reality of 21st-century computing and collaboration. Their work has…

The IBM Institute for Business Value released a new report titled "Security in the Quantum Era" that examines quantum risks and the need for enterprise adoption of quantum-safe capabilities to protect the integrity of critical applications and…

Following the discovery of Secure Boot settings that left about 290 Micro-Star International's (MSI) motherboards exposed to malware, the company said it will provide new BIOS files. By default, the company's motherboards came with insecure security…

The PwC 2022 US Metaverse Survey, which included more than 5,000 consumers and 1,000 US business leaders, reveals that 50 percent of consumers find the metaverse exciting, while 66 percent of executives report that their organizations are actively…

The National Institute of Standards and Technology (NIST) has announced its plans to revise its Cybersecurity Framework document, focusing on cyber defense inclusivity for all economic sectors. Updates to the voluntary guidance recently announced by the…

Capterra's 2022 Medical Internet of Things (IoT) Survey found that Internet-connected medical devices are 24 percent more vulnerable to cyberattacks. A new federal law enacted late last year is expected to provide some relief. The Food and Drug…

John Riggi, Senior Advisor for Cybersecurity and Risk at the American Hospital Association (AHA), emphasizes that Daixin, a highly advanced and stealthy malware, poses the greatest threat to healthcare. Multi-factor authentication (MFA) should be the top…