Researchers with Secureworks reported a new cybercrime campaign in which many unsecured Internet-facing Elasticsearch instances are being used to steal databases and display a ransom note requesting a ransom to be paid to get the database back. The…

The Cybersecurity and Infrastructure Security Agency (CISA) recently put out an advisory stating that vulnerabilities within some Dominion voting machines used in roughly a dozen states should be mitigated “as soon as possible.”  The technical flaws…

Law enforcement crackdowns, tougher cryptocurrency laws, and the shutdown of Ransomware-as-a-Service (RaaS) operators are lowering the return on investment (ROI) for ransomware operations worldwide. Crane Hassold, a threat researcher at Abnormal Security…

Recently, a prominent ransomware group claimed it had successfully attacked cybersecurity giant Mandiant and would release company files.  The ransomware group posted a note slamming Mandiant’s recent research linking it to a separate, sanctioned…

Although quantum computers offer a number of novel possibilities, they pose a threat to Internet security because they are expected to render current encryption methods obsolete. Therefore, researchers at TU Darmstadt have created a new tap-proof…

A team of researchers at Carnegie Mellon University's CyLab developed a new privacy-sensitive architecture for developers building smart home apps. The architecture, which the team refers to as "Peekaboo," takes requests from developers to share certain…

Security researchers at Proofpoint found that SMS phishing (smishing) attacks more than doubled year-on-year in 2021 as cybercriminals looked to exploit human error to compromise devices.  The researchers conducted a study analyzing over 2.6 billion…

In a new study, security researchers at Trend Micro polled over 6200 IT and business decision makers.  They found that global organizations are still beset with cyber visibility and control challenges, with two-fifths (43%) admitting their digital…

Ning Zhang, assistant computer science and engineering professor at the McKelvey School of Engineering at Washington University in St. Louis, wants to develop a new security capability to ensure safety against cyberattacks on pacemakers, autonomous…

Data-driven innovation, whether in the form of tailored medicine, public services, or efficient industrial production, promises to significantly benefit people and the environment, and provide widespread access to data. However, aggressive data…

Security researchers at Checkpoint Research have recently spotted a critical vulnerability in the Unisoc Tiger T700 chips that power the Motorola Moto G20, E30, and E40 smartphones.  The researchers noted that due to the flaw, the smartphones were…

Security researchers at Shadow Server Foundation have discovered that more than 3.6 million MySQL servers are publicly exposed on the internet.  During their research, the researchers simply issued a MySQL connection request on default port 3306 to…