Cequence Security published its "API Protection Report: Shadow APIs and API Abuse Explode" report for the first half of 2022. Approximately 5 billion (31 percent) malicious transactions targeted unknown, unmanaged, and unprotected Application Programming…

It has been demonstrated in a new phishing technique that the App Mode feature in Chromium-based web browsers can be abused to create realistic desktop phishing applications. App Mode is intended to provide native-like experiences by launching…

Zscaler researchers have linked a newly discovered sample of LilithBot malware to the Eternity Group, also known as EternityTeam and Eternity Project. The Eternity Group runs a Malware-as-a-Service (MaaS) platform and is linked to the Russian "Jester…

A Russian-speaking hacker gang is claiming responsibility for the takedown of several websites belonging to state governments in the US. The Kentucky Board of Elections website, which provides voter registration information, was also hacked despite the…

As supply chains and manufacturing processes become more diverse, it becomes much more difficult to validate the security of complex chips. Furthermore, justifying the time and expense to do so can be difficult, and there is little agreement on the ideal…

Josephine Wolff, associate professor of cybersecurity policy at the Fletcher School at Tufts University, points out that measuring and communicating defensive victories in cyberspace continues to be difficult. Successful attacks are often visible and…

The City of Tucson, Arizona, is notifying roughly 123,000 individuals that their personal information was compromised in a recent data breach.  The data breach was identified at the end of May 2022, but the city concluded its investigation only last…

The Security Operations Center (SOC) at Augusta University (AU) opened in October 2020, in the midst of COVID-19 challenges and increased cyber threats. With the help of a student workforce, the Cyber Defense Department has been working to keep AU and AU…

Insurance giant Lloyd's of London is currently investigating a cybersecurity incident that has forced it to disconnect some systems.  The company noted that it had detected unusual activity and decided to "reset" its network and systems as a…

What Albert Einstein called "spooky action at a distance" involves tiny particles that are interconnected despite being thousands of kilometers apart at times. Something that is inexplicable by classical physics laws is a fundamental part of quantum…

A first-of-its-kind agreement between the US and UK governments came into force this week, promising to streamline digital investigations for British law enforcers.  The Data Access Agreement technically allows each country’s investigators to…

Uber's former chief security officer was recently convicted of federal charges for illegally covering up the theft of Uber drivers' and customers' personal information in 2016.  Joe Sullivan, previously also a cybercrime prosecutor for the US…