A team of researchers at the Illinois Institute of Technology used Machine Learning (ML) and Artificial Intelligence (AI) algorithms to extract personal information, specifically protected characteristics such as age and gender, from anonymous cell phone…

A dark web carding market named "BidenCash" has recently released a massive dump of 1,221,551 credit cards to promote their marketplace, allowing anyone to download them for free to conduct financial fraud.  BidenCash is a stolen cards marketplace…

The source code for the BIOS used with Intel's 12th-generation Core processors has been leaked online, possibly including details of undocumented Model-Specific Registers (MSRs) and Intel's Boot Guard security technology's private signing key. The source…

When data sets containing personal information are shared for the purposes of research or business use, researchers attempt to disguise the data by removing the final one or two digits of a zip code, for example, while retaining its utility for insight.…

Threat actors are taking advantage of a severe Remote Code Execution (RCE) vulnerability in the Zimbra collaboration platform that has yet to be patched. Rapid7 researchers are warning of the exploitation of the unpatched zero-day RCE vulnerability in…

Officials from government organizations told the Government Accountability Office (GAO) that federal agencies' ransomware prevention and response assistance was "generally satisfactory." According to the Department of Homeland Security (DHS), ransomware…

The Darwin Deason Institute for Cyber Security at Southern Methodist University (SMU) is collaborating with the global financial services firm Goldman Sachs, with assistance from Prairie View A&M University (PVAMU), on research to detect and defend…

The October 2022 security updates for Android recently rolled out with patches for roughly 50 vulnerabilities, including a critical-severity flaw in the Framework component.  Tracked as CVE-2022-20419 and described as an information disclosure bug,…

According to a NETSCOUT Systems report, the number of Distributed Denial-of-Service (DDoS) attacks launched in the first half of this year exceeded six million. The NETSCOUT report is based on data gathered from Internet Service Providers (ISPs) around…

The Metaverse's virtual world is already attracting people to participate in virtual events and play games. It also has the potential to generate revenue for businesses. McKinsey estimates that it could be a $5 trillion industry by 2030. However,…

The State Bar of Georgia was hit by a ransomware attack earlier this year, and the organization has now confirmed that member and employee information was compromised.  The security incident occurred in April 2022 and was disclosed in early May.…

Oxeye researchers discovered a critical vm2 vulnerability (CVE-2022-36067) with a CVSS score of 10.0. This new vulnerability, called SandBreak, requires R&D leaders, AppSec engineers, and security professionals to immediately patch the vm2 sandbox if…