Security researchers at cybersecurity firm Rapid7 have identified several vulnerabilities and other potential security issues affecting F5 products.  The researchers reported their findings to the vendor in mid-August and disclosed details on…

INKY Technology researchers have detailed a new image-based phishing scam that uses brand impersonation to encourage victims to call the scammers rather than click on a link or download a file. The researchers observed malicious actors using an image-…

Carnegie Mellon University's (CMU) picoCTF for the National Security Agency (NSA) GenCyber Teacher Program is designed for local tri-state area high school computer science teachers in grades 10 through 12. The program will demonstrate to teachers how to…

Google recently announced plans to roll out Android Privacy Sandbox in beta starting early next year, delivering a more private advertising experience to mobile users.  The initiative was initially announced in February, with the developer preview…

In order to help defend against malicious attacks, next-generation electronic devices may include enhanced security systems built directly into their circuitry. According to KAUST researchers, protective "logic locks" based on an advanced branch of…

Ransomware attackers are taking advantage of organizations having fewer security personnel available on weekends and holidays in order to launch more devastating attacks. According to a new Cybereason report, 44 percent of businesses reduce security…

At least seven hacking groups are responsible for a massive increase in 'TrojanOrders' attacks against Magento 2 websites, which exploit a vulnerability that allows threat actors to compromise vulnerable servers. Sansec, a website security firm, warned…

European privacy experts warn FIFA World Cup attendees that their personal data may be at risk if they download two local tracking apps.  The two apps in question are contract-tracing software Ehteraz, which football fans may be asked to download if…

After a four-month hiatus, the cybercriminals running the Emotet botnet operation are already among the most high-volume threat actors in the current cybersecurity landscape. According to Proofpoint, detections of Emotet payloads dropped off in July 2022…

According to new research by researchers at Trellix, the infamous LockBit ransomware variant remained the most widespread in the third quarter of 2022, accounting for over a fifth (22%) of detections.  The researchers noted that LockBit and Phobos…

Fortinet FortiGuard Labs researchers discovered new RapperBot malware samples that are being used to build a Distributed Denial-of-Service (DDoS) botnet targeting game servers. The researchers discovered the previously undetected RapperBot Internet of…

Veeam Software has released its "Cloud Protection Trends Report 2023," which covers four key "as a Service" scenarios: Infrastructure-as-a-Service (IaaS), Platform-as-a-Service (PaaS), Software-as-a-Service (SaaS), and Backup and Disaster Recovery-as-a-…