When faced with a cybersecurity threat, 21 percent of the workforce does not know who to contact. According to a new report from the security awareness training platform KnowBe4, annual security training reduces that percentage to 17 percent. However, it…

Running a ransomware operation like a regular business runs the risk of having disgruntled employees who may want to sabotage the operation. That seems to be the case with the LockBit Ransomware-as-a-Service (RaaS) operators, as an apparently upset…

Tesla has recalled about 1.1 million US vehicle models after discovering a flaw in the vehicles' automatic window reversal system. The software flaw impacts Model 3, Model Y, Model S, and Model X vehicles manufactured between 2017 and 2022. The flaw may…

The US Homeland Security Department's Cybersecurity and Infrastructure Security Agency (CISA) has added a critical severity Java deserialization vulnerability impacting multiple Zoho ManageEngine products to its Known Exploited Vulnerabilities (KEV)…

A hack-for-hire group that was first revealed in 2019 has broadened its target list to include entities with business or political ties to Russia. Since 2015, the cyber mercenary collective known as Void Balaur has launched cyberattacks against…

Chainguard has launched Wolfi, a Linux distribution designed specifically for how digital systems are built today in the cloud. According to Chainguard principal engineer Ariadne Conill, Wolfi works well for enterprises looking to address supply chain…

Richmond-area middle and high school students could be on their way to a career in cybersecurity thanks to the first Virginia Commonwealth University (VCU) GenCyber Cybersecurity Summer Bootcamp, held July 25-29, 2022, by the VCU College of Engineering…

The National Security Agency (NSA) and the US Homeland Security Department's Cybersecurity and Infrastructure Security Agency (CISA) released a Cybersecurity Advisory highlighting the common steps malicious actors have taken to compromise Operational…

Twitter has remediated an issue that allowed accounts to stay logged in across multiple devices even after a voluntary password reset.  Twitter explained that the bug meant users who proactively changed their passwords on one device may have still…

Cybersecurity experts at Louisiana State University (LSU) are developing HookTracer, a new tool that uses Artificial Intelligence (AI) to reveal known and unknown cybercriminals and cybercrime. Investigators, such as the Louisiana State Police's…

Security researchers at Cyfirma have discovered that the threat actors known as FIN11 may have impersonated web download pages of the Zoom Application to conduct phishing campaigns against targets worldwide.  FIN11 was observed employing Zoom…

The market research firm Propeller Insights surveyed 400 cloud engineering and security practitioners and leaders on behalf of Snyk. The results revealed that 80 percent who responded experienced at least one significant cloud security incident in the…