According to a recent cybersecurity prevention survey conducted by Provident Bank, only half of small businesses are prepared to deal with a cyberattack, despite the fact that the threat of one is a top concern. Small businesses are urged to take…

The cryptocurrency division of Robinhood has been handed a $30 million penalty by New York's Department of Financial Services for significant violations of cybersecurity and money laundering regulations. The $30 million penalty adds to many problems at…

Malicious actors have been sending phishing emails to Google Workspace and Microsoft 365 users by exploiting open-redirect vulnerabilities affecting American Express and Snapchat domains. According to INKY research, the phishers in both cases included…

Researchers have discovered a new post-exploitation attack framework called Manjusaka in the wild, which can be used as an alternative to the widely used Cobalt Strike toolset or in tandem with it for redundancy. Manjusaka employs implants written in the…

According to Zscaler researchers, an ongoing large-scale phishing campaign is targeting owners of business email accounts at companies in the FinTech, Lending, Insurance, Energy, and Manufacturing sectors in the US, UK, New Zealand, and Australia. To…

Security researchers at Proofpoint conducted a Domain-based Message Authentication, Reporting and Conformance (DMARC) analysis and found that institutions in the U.S. have among some of the poorest protections to prevent domain spoofing and lack…

In a new study conducted by researchers at Menlo Security, they found that a third of organizations experience a ransomware attack at least once a week, with one in 10 experiencing them more than once a day.  The researchers also found that almost…

Solana, an increasingly popular blockchain known for its speedy transactions, has become hacked after users reported that funds have been drained from internet-connected “hot” wallets.  An unknown threat actor drained funds from approximately 8,000…

Google has patched 27 vulnerabilities with the release of Chrome 104 recently, and the researchers who reported some of these security holes earned thousands of dollars in bug bounties.  Google paid out approximately $90,000 for the flaws patched in…

The former owner of a T-Mobile store, Argishti Khudaverdyan, 44, of Burbank, has been found guilty of a multimillion-dollar scheme to illegally unlock and unblock mobile devices.  Khudaverdyan was found guilty of 14 federal charges, including wire…

Threat actors are increasingly impersonating legitimate applications such as Skype, Adobe Reader, and VLC Player in order to take advantage of trust relationships and increase the likelihood of a successful social engineering attack. According to…

Semikron, a German power electronics manufacturer, has revealed that a ransomware attack partially encrypted its network. Semikron employs approximately 3,000 people across 24 offices and 8 production facilities in Germany, Brazil, China, France, India,…