Security researchers at Inky have discovered that open redirect vulnerabilities affecting American Express and Snapchat websites were exploited earlier this year as part of phishing campaigns targeting Microsoft 365 users.  The researchers noted…

Security researchers at Cynerio and the Ponemon Institute have recently studied the current impact of cyberattacks on healthcare facilities and network-connected IoT and medical devices and found multiple alarming trends.  The researchers surveyed…

US convenience store chain 7-Eleven on Monday, August 8th, had to close its outlets in Denmark after a suspected cyberattack knocked out their cash tills.  In a statement, the company noted that all 175 7-Elevens in Denmark could not use the cash…

Enterprise software vendor Twilio has recently been hacked by a relentless threat actor who successfully tricked employees into giving up login credentials that were then used to steal third-party customer data.  The company did not provide details…

The US Cybersecurity and Infrastructure Security Agency (CISA) and the Australian Cyber Security Centre (ACSC) have published a joint advisory to detail the top malware strains of 2021. The ACSC and CISA have been monitoring ransomware, rootkits, spyware…

The NHS is currently battling a ransomware attack that has disrupted patient referrals, appointment bookings, and other operations.  The health service is working through its incident response process after managed service provider Advanced first…

Twitter recently revealed that a zero-day vulnerability in Twitter's code base was responsible for a major data breach that is thought to have affected 5.4 million users.  Twitter stated the threat actor who exploited the vulnerability is hoping to…

According to researchers from Germany's University of Passau, the way apps fingerprint user behavior poses a greater risk to user privacy than browser fingerprinting. The researchers claimed in a preprint published on arXiv that fingerprints in hybrid…

Sen. Maggie Hassan, D-NH, has introduced legislation that aims to strengthen small businesses' cybersecurity posture by providing funding to Small Business Development Centers assisting businesses with security. The Small Business Cybersecurity Act would…

The US Coast Guard intends is planning to invest $93 million in fiscal year 2022 to upgrade its IT systems and infrastructure in order to address long-standing problems. However, according to a new report from the Government Accountability Office (GAO),…

Workplace productivity software giant Slack recently forced password resets for a tiny fraction of its users after the discovery of a security flaw that exposed Slack credentials.  Slack alerted users to the issue via email and followed up with a…

Researchers at ReversingLabs discovered a new ransomware family targeting Linux-based systems in South Korea.  Dubbed GwisinLocker, the malware was detected by researchers on July 19 while undertaking successful campaigns targeting firms in the…