According to One Identity, misguided company investments in numerous identity tools are insufficient in defending against the current threat landscape. Ninety-six percent of businesses use several identity management technologies, with 41 percent using…

A threat actor named Ryushi claims to be selling the public and private information of 400 million Twitter users scraped in 2021 via a now-patched Application Programming Interface (API) flaw. They are selling the alleged data dump on the Breached…

CrowdStrike researchers have uncovered a vast array of strategies used by the powerful malware downloader GuLoader to circumvent security protection. Researchers Sarang Sonawane and Donato Onofri of CrowdStrike said in a technical write-up that a new…

There are few areas of consensus within the community of cybersecurity specialists and researchers. One of the few exceptions is the requirement for more widespread usage of Software Bills of Materials (SBOMs), a tool that lists a software's components.…

The metaverse refers to Internet-connected Virtual Reality (VR). This technology will be accessible to anyone, and numerous businesses will likely use it to introduce their products and services. A new analysis conducted by Tenable examines the risks…

Microsoft has recently silently fixed an important-severity security flaw in its Azure Container Service (ACS) after an external researcher warned that a buggy feature allowed cross-tenant network bypass attacks.  The vulnerability effectively…

According to a report released by the Government Accountability Office (GAO), the Department of Defense (DOD) spends hundreds of thousands of dollars training military personnel to complete advanced cyber courses, but not all armed forces have…

The FBI issued a warning that cybercriminals are using Internet ads in search results to steal or extort money from victims. In a pre-holiday public service announcement, the FBI stated that cybercriminals are purchasing ads to spoof real brands such as…

US President Joe Biden has recently signed the Quantum Computing Cybersecurity Preparedness Act into law.  The law is designed to secure the federal government systems and data against the threat of quantum-enabled data breaches ahead of "Q Day,"…

Some cybercriminals have traditionally targeted Microsoft Office files, specifically Excel and Word documents. Attackers have used embedded Visual Basic for Applications (VBA) macros to infect computers with various types of malware for cybercrime and…

Google has announced two open-source solutions to help organizations more easily process user data in accordance with privacy requirements. The first technology is called Magritte, which blurs items in videos, such as license plates. The other is a new…

Researchers from SentinelOne found that the Vice Society ransomware group has begun custom ransomware involving a powerful encryption strategy, which utilizes the NTRUEncrypt and ChaCha20-Poly1305 algorithms. Since June 2021, Vice Society ransomware has…