Many trusted Endpoint Detection and Response (EDR) technologies may contain a flaw that allows attackers to cause products to erase almost all data on installed systems. Or Yair, a SafeBreach security researcher who discovered the flaw, tested 11 EDR…

Artificial Intelligence (AI) has shown promise as a valuable tool for protecting against malicious actors. AI has been used to help predict terrorist attacks, destabilize terrorist networks, and mitigate cyberattacks in real-time. A newly established…

Microsoft retired the Boa web server in 2005, but it is still widely used. The company recently revealed that malicious actors in attacks against the energy industry have exploited a vulnerability in the server's open-source component. This development…

The Georgia Institute of Technology (Georgia Tech) and the Pacific Northwest National Laboratory (PNNL) announced the formation of a joint institute, the Institute for Cybersecurity and Resilient Infrastructure Studies (ICARIS), to focus on critical…

Security researchers at CrowsStrike are warning that a threat actor tracked as "Scattered Spider" is targeting telecommunications and business process outsourcing (BPO) companies in an effort to gain access to mobile carrier networks and perform SIM…

The Swiss government has recently asked its Parliament to amend the Information Security Act to make it mandatory for critical infrastructure providers to report cyberattacks to the National Cyber Security Centre (NCSC).  Doing this will be aimed at…

Over 90 percent of organizations migrating to the cloud have or are in the process of implementing a zero trust architecture. However, according to a new Zscaler study, only 22 percent of global Information Technology (IT) decision-makers are 'fully…

Anita Allen, University of Pennsylvania professor of law and philosophy, kicked off the 2022 HIMSS Healthcare Cybersecurity Forum with a discussion on patient privacy in an era of widespread data sharing. Allen wanted to use her expertise in law and…

A new study conducted by researchers at the University of East London (UEL) has found that a large proportion of young internet users are engaging in some form of cyber-related crimes, including money muling, digital piracy, and posting hate speech.…

The US Federal Communications Commission (FCC) issued a Notice of Proposed Rulemaking (NPRM) in October to bolster the security of the nation's Emergency Alert System (EAS) and Wireless Emergency Alerts (WEA). These systems alert the public about…

The Canadian branch of Amnesty International recently announced that it was the target of a cyberattack sponsored by China.  The human rights organization said it first detected the breach on October 5th and hired forensic investigators and…

According to Human Rights Watch, hackers backed by the Iranian government targeted human rights activists, journalists, diplomats, and politicians working in the Middle East as part of an ongoing social engineering and credential phishing campaign. Human…