The Dutch Fiscal Information and Investigation Service (FIOD) recently arrested a 29-year-old man in Amsterdam on August 10 in connection with the recent U.S. Treasury sanctions on decentralized Ethereum mixing service Tornado Cash.  The individual…

When thinking of someone hacking a Programmable Logic Controller (PLC), one would typically think of the PLC as the final target of the attack. Adversaries use other systems to get to what will eventually allow them to cause industrial havoc. However,…

Abnormal Security researchers discovered a 48% increase in email attacks over the previous six months, and 68.5% of those attacks included a credential phishing link.  The researchers noted that in addition to posing as internal employees and…

Three signed third-party Unified Extensible Firmware Interface (UEFI) boot loaders have been found to have a security feature bypass vulnerability that enables the circumvention of the UEFI Secure Boot feature. These flaws can be exploited by mounting…

On August 1, Lockheed Martin was supposedly targeted with a DDoS attack delivered by the pro-Russian hacker group Killnet. Killnet also claimed to have stolen Lockheed Martin employee data and threatened to share that data. There has been no word from…

The Indian military celebrated the country's Independence Day by announcing the adoption of locally developed Quantum Key Distribution (QKD) technology that can operate over distances of 150 kilometers. QKD is a technology for securely distributing…

Users of Apple's Instagram and Facebook iOS apps should be aware that both use an in-app browser that allows parent company Meta to track 'every single tap' users make with external websites accessed through the software. According to researcher Felix…

Organizations that host significant parts of the open-source software supply chain continue to implement security measures that provide developers and maintainers with more tools to protect their projects from attacks and malicious code commits. GitHub…

Security researchers at Cyble have warned that countless global organizations might be at risk of remote compromise after discovering more than 8000 exposed Virtual Network Computing (VNC) instances.  The researchers found that the instances were…

In comparison to the first quarter of 2022, the number of healthcare organizations targeted by cyberattacks has increased by 90 percent. According to Kroll's latest cyber threat Landscape report, phishing remains the primary vector for initial access,…

According to SEKOIA and Trend Micro, a new effort by the Chinese threat actor Lucky Mouse involves using a trojanized version of a cross-platform messaging software to backdoor devices. Infection chains use the chat program MiMi to obtain and install…

Ransomware attackers are constantly looking for new ways to maximize profits with minimal effort. Among their most effective strategies are the use of initial access brokers, collaboration with botnet operators, and the testing of new monetization models…