Code Intelligence, a provider of automated testing tools, has released CI Fuzz CLI, an open-source Command-Line Interface (CLI) tool that allows Java developers to incorporate fuzz testing into their existing JUnit setups. JUnit is an open-source, Java-…

Taiwan-based Delta Electronics has recently patched potentially serious vulnerabilities in two of its industrial networking products.  Security researchers at CyberDanube discovered the flaws in Delta's DX-2100-L1-CN 3G cloud router and the DVW-…

Colombian healthcare provider Keralty recently reported a ransomware attack that affected its systems and two of its subsidiaries: EPS Sanitas and Colsanitas.  The attack disrupted the companies' IT operations, websites, and scheduling of medical…

Security researchers investigated IBM Cloud's Database-as-a-Service (DaaS) infrastructure and discovered several security flaws that gave them access to the internal server used to build database images for customer deployments. The demonstrated attack…

In mid-November, a threat actor posting on a dark web forum claimed to have stolen the personal information of almost 500 million WhatsApp users.  Recently, Check Point Research (CPR) has published a new advisory analyzing the exposed files and…

According to an analysis of real-world cyberattacks and data collected from millions of PCs, ZIP and RAR files have surpassed Microsoft Office documents as the most commonly used file types by cybercriminals to deliver malware. Based on customer data…

​Pub Crawl summarizes, by hard problems, sets of publications that have been peer reviewed and presented at SoS conferences or referenced in current work. The topics are chosen for their usefulness for current researchers.

In November, hackers demanded health insurer Medibank pay US$9.7 million to keep the records stolen off the internet, or one dollar for each of the company's impacted customers, which included Prime Minister Anthony Albanese.   Medibank refused to…

Three Android apps with millions of downloads on the Google Play store, Lazy Mouse, Telepad, and PC Keyboard, had several flaws that could allow attackers to remotely execute commands and steal credentials. These were riddled with critical flaws, putting…

Security researchers at Akamai, analyzing a prolific botnet, recently managed to accidentally kill it due to the coding equivalent of a typing error.  The researchers detected the "KmsdBot" last month.  The Golang-based bot is designed to…

Eight people have been recently charged with conspiring to defraud the Georgia Department of Labor (GaDOL) out of tens of millions of dollars in unemployment benefits.  Among the defendants are Vienna, Georgia residents Tyshion Nautese Hicks, 30,…

Security researchers have discovered a relatively simple way to take control of Hondas, Nissans, Infinitis, and Acuras through their infotainment systems. According to new research, several major automakers were affected by a previously unknown…