Junho Hong, Assistant Professor of Electrical and Computer Engineering at the University of Michigan-Dearborn, and his colleague Professor Wencong Su are leading a new project funded with a grant from the US Department of Energy (DOE). They are teaming…

Comcast Xfinity customers have reported that their accounts have been compromised by a campaign employing a two-factor authentication (2FA) bypass technique. Despite enabling 2FA, Xfinity email customers began receiving messages that their account…

Academic researchers have identified critical flaws in Threema, an instant messenger claimed to provide a level of security and privacy unmatched by any other chat service. However, according to the researchers, the flaws fundamentally invalidate the…

Oregon workers compensation insurer SAIF Corp. suffered a data breach last fall that may have exposed some policyholders’ Social Security numbers and medical information.  The company noted that much of the information was at least two decades old,…

Negative pressure rooms, which are used in hospitals and laboratories to prevent the spread of deadly pathogens, can be breached using a smartphone, according to a team of researchers from the University of California, Irvine (UCI). These rooms are…

The 10th Annual Best Scientific Cybersecurity Paper Competition honors the best foundational cybersecurity paper published in 2021. The winning paper titled "Verifying Hyperproperties with Temporal Logic of Actions (TLA)," written by Leslie Lamport and…

In 2022, the number of cloud apps used to distribute malware nearly tripled, as users were confronted with an increasingly malicious cyber threat landscape. According to research from Netskope, over 400 different cloud apps were employed to target users…

Video messaging giant Zoom recently released patches for multiple security vulnerabilities that expose Windows and macOS users to malicious cyberattacks.  The vulnerabilities in the enterprise-facing Zoom Rooms product could be exploited in…

Iowa’s largest school district canceled classes for Tuesday after determining there was a cyberattack on its technology network.  Des Moines Public Schools announced Monday that classes would be canceled for its 33,000 students after being “alerted…

Security researchers at Phylum have identified a malicious attack targeting Python Package Index (PyPI) users with the PoweRAT backdoor and information stealer.  The campaign was first detected on December 22, 2022, when a malicious package named…

Two of the leading security agencies in the US are building a Machine Learning (ML)-based analytics environment to combat fast-evolving threats and create more robust infrastructures for both the public and private sectors. The Science and Technology…

The Hive ransomware threat group recently claimed to have stolen 550 GB of data from Consulate Health Care.  The actors' dark web posting appeared around the same time a notice was posted on the company's website that warned patients of potential…