The FBI warns that the Emennet Pasargad group is planning to target officials and businesses with hack-and-leak campaigns. Although the Iranian threat group Emennet Pasargad is primarily focused on attacking Israeli officials, the FBI warns that the…

Sonatype has released its eighth annual State of the Software Supply Chain Report, which discovered that, in addition to a massive increase in open-source supply, demand, and malicious attacks, 96 percent of open-source Java downloads with known…

US cybersecurity and intelligence agencies have issued a joint advisory warning of attacks carried out by the Daixin Team, a cybercrime gang primarily targeting the country's healthcare sector. According to the agencies, the Daixin Team is a ransomware…

Over 200 typosquatting domains impersonating 27 brands are being used in a massive malicious campaign to trick visitors into downloading various Windows and Android malware. Typosquatting is a technique for tricking people into visiting a fake website by…

Researchers from the Leiden Institute of Advanced Computer Science discovered thousands of repositories on GitHub offering fake proof-of-concept (PoC) exploits for various vulnerabilities, some of which include malware. PoC exploits are uploaded by…

The Lithuanian National Cyber Security Center (NCSC), in collaboration with the Internet Service Center DOMREG at Kaunas University of Technology (KTU), has developed DNS Firewall, a new free tool for residents and organizations to help in the fight…

Securing software and other services requires the discovery of flaws and the implementation of corrective measures. The question is how to properly disclose vulnerabilities to vendors and the general public. Many researchers find vulnerabilities and have…

A Trinity College professor and her research collaborators, including Trinity students, will work to make Internet communications more secure with an $850,000 National Science Foundation (NSF) grant. Ewa Syta, Associate Professor of Computer Science,…

The National Security Agency (NSA) has awarded the University of Arkansas at Little Rock (UALR) a nearly $150,000 grant to hold a year's worth of free cybersecurity educational events for Arkansas junior high and high school students. UALR will…

Ohio State's Center for Design and Manufacturing Excellence (CDME) gives a peek into the future of manufacturing, with students working on various projects on any given day. Inside the facility, where robotic arms are connected to a row of computers,…

Decentralized finance (DeFi) platform Moola Market has suffered a security incident leading to a loss of up to $9m worth of cryptocurrency.  The Celo blockchain-based platform admitted that an incident had occurred on Tuesday, October 18.  The…

Security researchers at JFrog have spotted thousands of publicly exposed, active application programming interface (API) tokens across the web that could threaten software integrity and allow bad actors to access confidential information, data, or…