Research by Tanya Koohpayeh Araghi from the Interdisciplinary Internet Institute (IN3) of the Universitat Oberta de Catalunya (UOC) has developed a new tool to protect digital data securely and cost-effectively.

The North Korean state-backed hacker group "Kimsuky" has been linked to the use of a new malicious Google Chrome extension that steals sensitive information.

Fortra recently announced patches for a critical-severity SQL injection vulnerability in FileCatalyst Workflow that could allow attackers to create administrative user accounts.

TeamViewer, a remote connectivity software provider, has detected a corporate network compromise, and some reports suggest that the Russian group "APT29," also known as "Cozy Bear" and "Midnight Blizzard," is responsible for the attack.

Mobile devices are vulnerable to data theft and Denial-of-Service (DoS) attacks due to flaws in 5G technologies.

A threat actor called "Unfurling Hemlock" has infected target systems with up to ten pieces of malware.

Healthcare revenue cycle management services provider Designed Receivable Solutions (DRS) has recently informed authorities that the number of individuals impacted by a recent data breach has increased to 585,000.

Ann & Robert H. Lurie Children’s Hospital of Chicago recently started to inform hundreds of thousands of individuals that their personal and health information has been compromised due to a ransomware attack.

According to Skybox Security, in 2023, over 30,000 new vulnerabilities were published, with one emerging about every 17 minutes (around 600 per week).

According to a study by the Network Detection and Response (NDR) specialist Corelight, European Information Technology (IT) leaders disagree on the value of generative Artificial Intelligence (GenAI) in cybersecurity.

A new Bugcrowd report titled "Inside the Mind of a CISO 2024" highlights findings from a survey of 209 security leaders to understand modern Chief Information Security Officers' (CISO) thinking, operations, and motivations.

Certain versions of GitLab Community and Enterprise Edition products have a critical vulnerability that enables attackers to run pipelines as any user.