CSC released its third annual Domain Security Report, which discovered that three out of every four Forbes Global 2000 companies have not implemented key domain security measures, leaving them vulnerable to security threats. These businesses have only…

A hacker forum has shared over 5.4 million Twitter user records containing non-public information stolen using an Application Programming Interface (API) vulnerability fixed in January. A security researcher also revealed another massive, potentially…

Ukraine has been subjected to a new wave of ransomware attacks, similar to previous intrusions linked to the Russia-based Sandworm nation-state group. The attacks against several Ukrainian entities were first detected on November 21, 2022, according to…

According to researchers, popular redaction tools do not always work as intended, and new attacks can reveal hidden data. Since most documents are now digitized, securely redacting their contents has become more difficult. Most redactions by government…

Oak Ridge National Laboratory (ORNL) researchers are using blockchain to validate communication between electric grid devices. The project is part of the Department of Energy (DOE) Office of Electricity (OE)-funded ORNL-led Darknet initiative to…

Recent data breaches have prompted changes to Australia's cybersecurity and data protection policies, with the most recent development appearing to be the formation of a cyber task force set with hacking back and actively pursuing cybercriminals. As…

The European Parliament website was hit with a sophisticated cyberattack that disrupted its services moments after members voted to designate Russia as a state sponsor of terrorism. According to Dita Charanzová, Czech MEP and Parliament vice president in…

According to new research from ESET, the Advanced Persistent Threat (APT) group Bahamut has been using Virtual Private Network (VPN) apps as a new carrier for dangerous malware targeting Android phones. Threat actors could hire the Bahamut APT group to…

An international police operation has taken down an online spoofing service that helped cybercriminals impersonate trusted corporations and steal over $120 million from victims. iSpoof, which now displays a message stating that the FBI and US Secret…

The Idaho secretary of state's office has become the fourth in the country to implement a vulnerability disclosure policy that allows white-hat hackers to legally probe the office's election-related websites for flaws. Under the new policy, security…

Many Android smartphones have been found to be vulnerable to a number of high-severity security flaws that have yet to be addressed, despite Arm releasing fixes. The unpatched flaws identified by Google Project Zero (GPZ) affect Android phones equipped…

On November 16, an actor advertised a 2022 database of 487 million WhatsApp user mobile numbers on a well-known hacking community forum. The data set is said to contain WhatsApp user data from 84 different countries. According to the threat actor, there…