PsExec assists administrators in remotely executing processes on network machines without the need to install a client. However, threat actors have also adopted the tool, often using it in the post-exploitation stages of an attack to spread across the…

The US moving and storage rental company U-Haul has experienced a data breach as a result of an unauthorized person gaining access to an unspecified number of rental contracts, according to Amerco, U-Haul's parent company. The number of impacted…

According to a new report, 80 percent of organizations have had at least one severe cloud security incident in the last year, and 41 percent believe cloud native services increase complexity, complicating security efforts. However, the study conducted by…

As part of a new social engineering campaign seeking sensitive information, hackers linked to the Iranian government have targeted individuals specializing in Middle Eastern affairs, nuclear security, and genome research. The targeted attacks were…

Orca Security conducted an analysis of data collected from major cloud services, finding that attackers only need three steps on average to gain access to sensitive data, with the most common starting point being the exploitation of a known vulnerability…

An international team has successfully implemented an advanced form of quantum cryptography. Quantum Key Distribution (QKD) is secure against attacks on the communication channel but not against attacks or manipulations of the devices themselves. As a…

VMware engineers tested the Linux kernel's fix for the Retbleed speculative execution bug and discovered that it can reduce computing performance by up to 70 percent. VMware performance engineering staffer Manikandan Jagatheesan reports that running…

To research and develop technologies to combat such threats facing smart technology in power grids, a group of researchers are developing a smart microgrid cybersecurity testbed. The research team, which includes faculty and student researchers, is being…

The US Department of Health and Human Services' (HHS) Health Sector Cybersecurity Coordination Center (HC3) released a brief that looks at various emerging technologies, their roles in healthcare, and how they intersect with security. The briefing…

According to a report from the blockchain research firm Chainalysis, law enforcement agencies seized over $30 million in cryptocurrency allegedly stolen by hackers linked to the North Korean government. The funds were originally part of the more than $…

On September 1, the OakBend Medical Center in Texas faced a ransomware attack, causing communication and IT disruptions. The Texas hospital is using electronic health record downtime procedures as it works to rebuild. When OakBend's IT team…

Six security flaws have been discovered in the firmware of HP's business-focused laptops and desktops, with some of them remaining unpatched for months. Security researchers at Binarly presented the set of vulnerabilities at the recent Black Hat…