Phishing emails distributing the QBot malware are infecting computers by exploiting a Dynamic-Link Library (DLL) hijacking flaw in the Windows 10 Control Panel, most likely to avoid detection by security software. DLL hijacking is a common attack…

BetterCloud, a cloud service management company, discovered that organizations are increasingly using Software-as-a-Service (SaaS) apps, but the industry is changing due to consolidation and app security concerns. The company's 10th annual State of…

Meta Platforms reportedly recently fired or disciplined more than two dozen employees and contractors who allegedly compromised and took control of Facebook user accounts.  Bribery was involved in some cases.  Users who were locked out of their…

Dynamic-Link Library (DLL) sideloading, also known as DLL hijacking, often gets overlooked. However, because of their widespread nature and ease of exploit development, these flaws are valuable for digital adversaries. Many Windows services are currently…

Swiss authorities have recently arrested a Ukrainian national wanted by the Federal Bureau of Investigation (FBI) for 12 years for connections with a cyber-criminal group that stole millions of dollars from bank accounts using malware called Zeus.  …

According to a new report from the Office of the Inspector General (OIG), as the Department of Health and Human Services (HHS) strives for greater interoperability across the healthcare sector, the agency must increase efforts to modernize its approach…

According to researchers at JumpCloud, IT professionals worry that cybersecurity-specific funding might be at risk.  Of those surveyed, 44% agree their organization will cut spending on cybersecurity in the next year.  Many of the respondents (…

Despite their insecurity, sequential strings of numbers and "password" remain users' most popular password choices worldwide. NordPass' annual study of the top 200 most popular passwords also revealed that in the UK, names of football teams ranked highly…

Officials with the Arkansas Department of Human Services have recently discovered a data breach that released client data.  The officials said the breach came on Sept. 16 when an employee sent emails from her DHS email account to her personal Yahoo…

According to new research by Bitdefender, over half (56%) of Black Friday spam emails received between October 26 and November 6, 2022, were scams.  The researchers analyzed all unsolicited Black Friday-related emails delivered to its customers over…

Virtual 3D tours on real estate websites like Zillow and Redfin enable viewers to explore homes without travel. The homes in these tours are sometimes staged, but they also contain evidence of current residents' lives. Researchers at the University of…

Data is one of the most valuable resources for businesses, but extracting that value requires effective content management. According to a new Rocket Software survey of more than 500 corporate Information Technology (IT) professionals from various…