Mobile devices use facial recognition technology to help users unlock their phones, make financial transactions, and access medical records quickly and securely. According to new research involving the Penn State College of Information Sciences and…

Intel recently announced its release of Tunable Replica Circuit (TRC), a new fault injection protection in the 12th generation Intel Core processors meant to identify non-invasive physical glitch attacks and electromagnetic fault injections.  Intel…

In firefighting, the worst flames are the ones you don’t see coming.  It is very difficult to notice signs of impending flashover, a deadly fire phenomenon wherein nearly all combustible items in a room ignite suddenly.  Flashover is one of the…

An Open Cybersecurity Schema Framework (OCSF) unveiled at the Black Hat USA 2022 conference promises to address long-standing data sharing issues that limit the effectiveness of cybersecurity teams while increasing overall costs. The OCSF, led by Amazon…

The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) issued a joint cybersecurity advisory to warn critical infrastructure of the dangers of Zeppelin ransomware. From 2019 to at least June 2022, the…

Security researchers at CloudSEK have discovered that a threat actor group named SolidBit is actively advertising RaaS (Ransom-as-a-Service) and looking to recruit new affiliates on dark web forums.  The researchers stated that the group is actively…

The Department of Computer Science and Engineering at the University of Gothenburg organized a course to encourage girls to explore coding. Through the course, the girls experienced programming and learned about cryptography, hands-on hacking, sorting…

Security researchers at Faraday have discovered a severe vulnerability affecting the eCos SDK made by Taiwanese semiconductor company Realtek that could expose the networking devices of many vendors to remote attacks.  The vulnerability tracked as…

Microsoft recently announced that, over the past 12 months alone, it paid out $13.7 million in rewards as part of its bug bounty programs.  Microsoft is currently running over 15 bug bounty programs covering assets across its cloud services, desktop…

Organizations do not have enough cyber insurance coverage to protect themselves in the event of a ransomware attack, with only 14 percent of businesses with 1,400 or fewer employees having coverage limits exceeding $600,000. These were among the findings…

An authentication bypass Zimbra security flaw is actively being used to compromise Zimbra Collaboration Suite (ZCS) email servers. Zimbra is an email and collaboration platform used by over 200,000 businesses in 140 countries, including more than 1,000…

Xiaomi Redmi Note 9T and Redmi Note 11 models have security flaws that could be exploited to disable the mobile payment mechanism and forge transactions via a malicious Android app installed on the devices. Researchers at Check Point discovered the flaws…