Researchers discovered a new attack and command-and-control (C2) framework known as 'Alchimist,' which appears to be actively used in attacks against Windows, Linux, and macOS systems. The framework and its files are 64-bit executables written in GoLang…

A novel timing attack against the npm's registry Application Programming Interface (API) can potentially be used to reveal private packages used by organizations, thus putting developers at risk of supply chain threats. Threat actors can detect…

Jedidiah Crandall, an associate professor of computer science at Arizona State University (ASU), is conducting research on the effectiveness of Virtual Private Networks (VPNs). Crandall explains that VPNs conceal a user's Internet Protocol (IP) address…

According to research shared by the cybersecurity firm Trellix, county election workers in Arizona and Pennsylvania experienced a spike in malicious emails ahead of the states' primaries earlier this year. Trellix security researchers stated in a blog…

Security researchers at Vedere labs have found that healthcare, like any other industry, is increasingly relying on internet-connected devices to facilitate day-to-day operations and workflows.  The interconnectedness of healthcare means that…

Cyberattacks that entice victims with themes based on the popular video conferencing service Zoom have boosted malware growth, with one named Vidar becoming increasingly popular in a short period of time. Vidar malware is ranked eighth in Check Point…

Cybersecurity experts at Rochester Institute of Technology (RIT) recently collaborated with S&P Global Ratings credit analysts in an educational partnership to better frame the impact of cyber risk on an organization's creditworthiness. Credit…

According to CDK Global Inc., a leading automotive retail software provider, 15 percent of dealers have experienced a cybersecurity incident in the last year. CDK Global's second annual dealership cybersecurity study revealed that 85 percent of those…

In the second DeFi hack this week, Mango Markets was drained of over $100 million in funds due to an exploit.  Mango Markets tweeted Tuesday evening that a hacker was able to empty funds from Mango via an oracle price manipulation.  Only last…

Google has announced the launch of passkey support for developers on Android and Chrome as part of an effort to increase the adoption of passkeys. Passkeys are an industry standard aimed at removing passwords used for online authentication. Google, Apple…

Colleges and universities in the US are on high alert because of cyberattacks. In March 2021, the FBI issued a warning for higher education on the increase in ransomware targeting education institutions. Despite efforts made by universities to combat…

According to researchers at San Francisco State University, law enforcement databases may contain private information about individuals, including crime victims. Contrary to what the legal community has believed for nearly 30 years, a new study from San…