Uber has recently settled with the US Department of Justice (DoJ) over its cover-up of a November 2016 data breach.  Uber has agreed to help the DoJ prosecute its former chief security officer Joseph Sullivan in exchange for escaping prosecution…

As many as 207 websites have been infected with malicious code that uses WebAssembly on the browser to launch a cryptocurrency miner. The web security company Sucuri, which revealed the details of the campaign, said it launched an investigation after a…

Security researchers at Vade discovered that banks received the largest share of phishing attacks during the first half of 2022.  The researchers also found that attackers were most likely to send their phishing emails on weekdays, with most…

According to researchers at Tessian, human error is one of the most significant risks in cybersecurity.  The researchers stated that while everyone makes mistakes, there are a substantial number of employees who are completely oblivious to the…

WithSecure researchers discovered "DUCKTAIL," an ongoing operation that targets individuals and organizations using Facebook's Ads and Business platform. Based on its analysis and data collection, the company is confident that the operation is being…

Entrust recently disclosed that it suffered a data breach last month, and the security company has confirmed that the attackers have stolen some files.  The breach was discovered on June 18, and the firm started notifying customers on July 6.  …

The source code for an information-stealing malware written in Rust has been made available for free on hacking forums, and security analysts report that the malware is already being used in the wild. The malware, which the author claims was created in…

The LockBit ransomware gang appears to have claimed another two victims in recent days the Canadian town of St Marys and an Italian tax agency.  The local administration at St Marys explained in an update on Friday that the attack occurred last…

Security researchers at SonicWall discovered that global ransomware volumes shrunk by 23% year-on-year (YoY) in the first half of 2022, but overall, malware surged by 11% over the period.  The researchers analyzed one million security sensors…

Microsoft is now taking measures to thwart Remote Desktop Protocol (RDP) brute-force attacks as part of the most recent releases of the Windows 11 operating system. Accounts are automatically locked after ten unsuccessful sign-in attempts for ten minutes…

The "CosmicStrand" Windows firmware rootkit has emerged in the cyberthreat landscape, targeting the Unified Extensible Firmware Interface (UEFI) for stealth and persistence. UEFI firmware is in charge of booting up Windows computers and loading the…

An increasing number of organizations are exploring how deep learning, and its ability to mimic the human brain, can help cybersecurity operations stay ahead of the world's fastest and most dangerous cyber threats. Deep learning, the most advanced form…