In the paper titled, "Exploring the Unprecedented Privacy Risks of the Metaverse," researchers from UC Berkeley and the Technical University of Munich tested an "escape room" Virtual Reality (VR) game to better understand how much data a potential…

Mailing and printing services vendor OneTouchPoint has disclosed a data breach impacting more than 30 healthcare providers and health insurance carriers.  OneTouchPoint offers print, marketing execution, and supply chain management services to…

Security researchers at Kaspersky have discovered yet another supply chain attack campaign using malicious npm packages, this time targeting Discord users.  The researchers said they identified four suspicious packages in the popular npm repository…

A new study published in Nature describes how an international team of researchers experimentally implemented a type of quantum cryptography thought to be the 'ultimate,' 'bug-proof' means of communication for the first time. In an experiment based on…

Security researchers at Coveware found that Ransomware-as-a-service (RaaS) operators are evolving their tactics yet again in response to more aggressive law enforcement efforts.  The researchers identified three characteristics of RaaS operations…

Microsoft discovered that an access broker tracked as DEV-0206 uses the Raspberry Robin Windows worm to deploy a malware downloader on networks. Evidence of malicious activity matching Evil Corp tactics was also discovered. Microsoft researchers…

Spanish and Romanian police recently joined forces to take down a gang suspected of earning at least €3m ($3.1) from internet scams.  Spanish National Police arrested three suspects in the southern city of Malaga, while their Romanian counterparts…

Information has been released on a security flaw in Dahua's implementation of the Open Network Video Interface Forum (ONVIF) standard that, if abused, might result in the takeover of IP cameras. According to a report released by Nozomi Networks, the CVE-…

The largest Distributed Denial-of-Service (DDoS) attack to ever affect Europe was launched this month and was directed at a corporation in Eastern Europe. The target, an Akamai customer who receives cybersecurity and cloud services, has been subjected to…

A phishing campaign is tricking users into providing login information by using mirror versions of landing pages from target companies. The malicious actors can then use these stolen credentials to access a wealth of private or business files, as well as…

Elon Musk's Starlink and other satellite Internet projects aim to provide high-speed, low-latency broadband Internet around the world. However, some major questions remain unanswered, such as how to build a resilient, secure network in space. Therefore,…

​Pub Crawl summarizes, by hard problems, sets of publications that have been peer reviewed and presented at SoS conferences or referenced in current work. The topics are chosen for their usefulness for current researchers.