Three signed third-party Unified Extensible Firmware Interface (UEFI) boot loaders have been found to have a security feature bypass vulnerability that enables the circumvention of the UEFI Secure Boot feature. These flaws can be exploited by mounting…

On August 1, Lockheed Martin was supposedly targeted with a DDoS attack delivered by the pro-Russian hacker group Killnet. Killnet also claimed to have stolen Lockheed Martin employee data and threatened to share that data. There has been no word from…

The Indian military celebrated the country's Independence Day by announcing the adoption of locally developed Quantum Key Distribution (QKD) technology that can operate over distances of 150 kilometers. QKD is a technology for securely distributing…

Users of Apple's Instagram and Facebook iOS apps should be aware that both use an in-app browser that allows parent company Meta to track 'every single tap' users make with external websites accessed through the software. According to researcher Felix…

Organizations that host significant parts of the open-source software supply chain continue to implement security measures that provide developers and maintainers with more tools to protect their projects from attacks and malicious code commits. GitHub…

Security researchers at Cyble have warned that countless global organizations might be at risk of remote compromise after discovering more than 8000 exposed Virtual Network Computing (VNC) instances.  The researchers found that the instances were…

In comparison to the first quarter of 2022, the number of healthcare organizations targeted by cyberattacks has increased by 90 percent. According to Kroll's latest cyber threat Landscape report, phishing remains the primary vector for initial access,…

According to SEKOIA and Trend Micro, a new effort by the Chinese threat actor Lucky Mouse involves using a trojanized version of a cross-platform messaging software to backdoor devices. Infection chains use the chat program MiMi to obtain and install…

Ransomware attackers are constantly looking for new ways to maximize profits with minimal effort. Among their most effective strategies are the use of initial access brokers, collaboration with botnet operators, and the testing of new monetization models…

A researcher from Belgium developed a $25 hacking tool capable of corrupting Starlink's Internet terminals, and he is reportedly planning to make this tool available for others to copy. At the Black Hat Security Conference, Lennert Wouters, a security…

Social media giant Meta has announced it will start testing end-to-end encryption (E2EE) as the default option on its Facebook Messenger platform.  The feature will be initially available only to selected users.  The company stated that if you…

Since the release of the Conti ransomware strain in 2020, its operators have wreaked havoc all over the world. They've used it to shut down hospitals, attack governments, and extort countless businesses. These criminal hackers have targeted over 1,000…