A leading US payments company is contacting over eight million current and former customers of its Cash App Investing subsidiary that a malicious insider may have accessed their details.  San Francisco-headquartered Block revealed the news in an SEC…

Researchers at North Carolina (NC) State University have developed a new method that uses hardware and software to strengthen file system security for next-generation memory technologies called Non-Volatile Memories (NVMs). Their encryption technique…

A team of researchers has developed an algorithm, which is a new Byzantine Fault Tolerance (BFT) consensus protocol, to improve the resiliency, efficiency, and speed of blockchains. The new BFT consensus protocol can overcome faults and avoid system…

A new study in the International Journal of Networking and Virtual Organizations explores the use of deep learning to detect Distributed Denial-of-Service (DDoS) attacks, which could help service providers lessen the effects of these attacks. According…

The Science of Security and Privacy 2022 Annual Report is now available. This report highlights the progress and accomplishments of the Science of Security and Privacy initiative.      

Organizations have become increasingly dependent on Internet-based technologies for building management systems, Internet of Things (IoT) devices, operational technology, and other physical assets. These technologies introduce new security…

A study conducted by a team of researchers at the University of Pittsburgh Swanson School of Engineering found that the Graphics Processing Unit (GPU) in some Android smartphones could be used to eavesdrop on a user's credentials when they type them…

Security researcher Karl Koscher and his colleagues explored what happens when an old satellite has been decommissioned and transitioned into a graveyard orbit. They were given permission to access and broadcast from a Canadian satellite called Anik F1R…

The United States House of Representatives has passed a bill that would change how cybercrime is tracked, measured, and reported by the federal government.  The Better Cybercrime Metrics Act was approved by the House in a bipartisan 377-48 vote.…

Customers of a popular cryptocurrency hardware provider have been urged not to reply to any official-looking emails after a convincing phishing campaign was uncovered.  Trezor makes hardware devices that customers can use to store their digital…

Hackers have breached infrastructure belonging to Russia's Federal Air Transport Agency, wiping its entire database and files containing 65TB of data. This data includes documents, files, aircraft registration data, and emails from the servers. According…

Threat actors are infiltrating cloud accounts to create distributed workloads for cryptomining. According to researchers, the threat actors are hacking misconfigured and vulnerable cloud instances to carry out Distributed Denial-of-Service (DDoS) attacks…