Multi-factor authentication (MFA) is a commonly employed security approach that requires the usage of two or more distinct authentication factors to verify the user's identity. Inadvertently, as MFA has become more prevalent in the commercial world, it…

In November 2021, the US Cybersecurity and Infrastructure Security Agency (CISA) published the Known Exploited Vulnerabilities Catalog to help federal agencies and critical infrastructure organizations identify and remediate vulnerabilities that are…

The Information Technology (IT) security solutions vendor Dr. Web has identified Linux malware that compromises WordPress-based websites. It exploits 30 flaws in various plugins and themes for this platform. If websites use outdated versions of such add-…

Ireland's privacy regulator has declared that it will investigate a recently discovered data leak that could affect over 400 million Twitter users. The Data Protection Commission (DPC) is already probing the company for an earlier data breach. In the…

Multiple Wi-Fi router models, including Wireless AC Nighthawk, Wireless AX Nighthawk (Wi-Fi 6), and Wireless AC router models, were affected by a flaw that Netgear has now addressed. The company stated that the vulnerability is a pre-authentication…

Although the complete replacement of passwords has been prophesied for many years, earlier identity-verification methods continue to persist. However, this is changing, namely due to the exponential development of machine IDs. Some industry professionals…

Researchers at Microsoft are urging businesses to educate employees on the type of social engineering attacks used by hacking group DEV-0537 (LAPSUS$) and strengthen their security posture.  The hacking group DEV-0537, also known as LAPSUS$,…

Thousands of victims were tricked by impostors working out of a Ukrainian call center who pretended to be Information Technology (IT) security employees at their banks. The scheme has now been shut down. The scammers called the victims, informed them…

Port of Lisbon's website remains offline days after officials revealed it was the victim of a hack. Due to its strategic location at the crossroads of Europe and Africa, the Port of Lisbon is one of the busiest in all of Europe, processing 13,200,000…

The US Department of Energy (DOE) funded research that brings further attention to cybersecurity for Electric Vehicle (EV) charging infrastructure. Researchers from Sandia National Laboratories have been examining vulnerabilities in charging…

Ukraine's domestic intelligence service has stated that in 2022, it successfully thwarted over 4,500 cyberattacks. The Security Service of Ukraine (SSU), which defends Ukraine's information and digital security during wartime, reports that the number of…

As 2022 draws to a close, an anonymous Twitter user has leaked over 100,000 API Keys stolen from 3commas.  A spokesperson from 3Commas stated that hackers made off with $22 million worth of cryptocurrency due to stolen API keys from them.  …