News
-
"Iran’s Steel Industry Hit by Cyberattack as Tensions With Israel Rise"The Iranian steel industry has been targeted in a significant cyberattack with hackers claiming to have taken over the systems of three state-owned enterprises. The Khuzestan Steel Company announced that it has shut down its factory until further notice…
-
"Python Packages For PyPI Were Found Emailing Unprotected Websites Using Stolen AWS Keys"Many malicious Python programs have been discovered in the PyPI repository, which steal sensitive data such as AWS credentials and send it to publicly accessible locations. Software developers can select the building blocks for their Python-based…
-
"ShiftLeft Finds a 97 Percent Reduction in Open-Source Software Vulnerabilities"ShiftLeft recently reported AppSec news, revealing a 97 percent reduction in open-source software (OSS) vulnerabilities, based on millions of scans of its customers. According to the researchers, by identifying and prioritizing attackable OSS…
-
"Project Will Make sel4 Cyber Security Technology Usable in More Complex Computer Systems"The British government will provide support to UNSW Sydney researchers in the improvement of their world-leading cybersecurity technology aimed at protecting critical computer systems against cyberattacks. The UK's National Cyber Security Centre (NCSC)…
-
"Professor Receives Grant as Part of $14 Million Industry Collaboration to Improve Secure Communications"The Intelligence Advanced Research Projects Activity (IARPA) has awarded a $14 million contract to fund a collaborative project between BAE Systems and a team of researchers at Virginia Tech in order to meet the growing demand for secure…
-
"Researchers: Oracle Took 6 Months to Patch 'Mega' Vulnerability Affecting Many Systems"Security researchers PeterJson of VNG Corporation and Nguyen Jang of VNPT have published technical details on a critical Fusion Middleware vulnerability that Oracle took six months to patch. Tracked as CVE-2022–21445 (CVSS score of 9.8), the…
-
"Teaching Physics to AI Can Allow it to Make New Discoveries All on Its Own"Researchers at Duke University have discovered that incorporating known physics into machine learning algorithms can help the enigmatic black boxes attain new levels of transparency and insight into the characteristics of materials. The…
-
"Biden Signs Two Cybersecurity Bills Into Law"The Federal Rotational Cyber Workforce Program Act of 2021 and the State and Government Cybersecurity Act of 2021 were signed into law on Tuesday, June 21, 2022, by US President Joe Biden. The Federal Rotational Cyber Workforce Program Act proposes…
-
"Ransomware Hacker Spotted Using Zero-Day Exploit on Business Phone VoIP Device"A vulnerability in a Voice over Internet Protocol (VoIP) business device was used by a hacker to infect a company with ransomware. According to researchers at the security firm Crowdstrike, the hacker exploited a new vulnerability in a Linux-based VoIP…
-
"Businesses Risk 'Catastrophic Financial Loss' From Cyberattacks, US Watchdog Warns"The Government Accountability Office (GAO) warns that private insurance companies are increasingly declining to cover damages caused by major cyberattacks, leaving American businesses vulnerable to catastrophic financial loss unless another insurance…
-
"Unsecured APIs Could Be Costing Firms $75bn Per Year"Security researchers at Imperva discovered that global businesses could be exposing themselves to billions in annual losses because they aren't properly securing their APIs. Imperva teamed up with the Marsh McLennan Cyber Risk Analytics Center to analyze…
-
"$100 Million Worth of Crypto Has Been Stolen in Another Major Hack"It has recently been discovered that hackers have stolen $100 million in cryptocurrency from Horizon, a so-called blockchain bridge, in the latest major heist in the world of decentralized finance. Details of the attack are still slim, but Harmony…