Security researchers at Intezer have discovered a new malware dubbed SysJoker. The brand-new multiplatform malware, likely distributed via malicious npm packages, is spreading under the radar, with Linux and Mac versions going fully undetected in…

Microsoft has disclosed a vulnerability found in Apple's macOS that could allow an attacker to gain unauthorized access to protected user data by circumventing the operating system's Transparency, Consent, and Control (TCC) technology. After the…

Researchers at Check Point have found that global weekly cyberattacks hit an all-time high in Q4 2021 of 925 attempts per organization.  The researchers analyzed information collected by hundreds of millions of global sensors from Check Point's…

Researchers at the UPV/EHU-University of the Basque Country have proven that the distortion metrics, used to detect whether an audio perturbation designed to fool Artificial Intelligence (AI) models, are not a reliable measure of human perception. Such…

David Maimon, Associate Professor of Criminal Justice at Georgia State University and the Evidence-Based Cybersecurity Research group he directs, explored 60 black market communication channels on the Internet to gain more insight into the online fraud…

The Federal Bureau of Investigation (FBI) is warning of a cybercrime group that has been mailing out USB thumb drives in an effort to spread ransomware. The USB drives, sent in the mail through the US Postal Service and United Parcel Service, contain '…

A cyberattack has forced the government of New Mexico’s most populous county to close most of its county buildings to the public.  Bernalillo County had to take some of its IT systems offline after becoming the target of a digital assault that…

Ravkoo, a United States-based online pharmacy service, has started notifying patients of a data breach that potentially resulted in the exposure of personal information.  Initially discovered in late September, the breach resulted from a cyberattack…

​Pub Crawl summarizes, by hard problems, sets of publications that have been peer reviewed and presented at SoS conferences or referenced in current work. The topics are chosen for their usefulness for current researchers.

User login credentials remain a major target for cybercriminals, as they provide access to organizations’ critical infrastructures and systems. Threat actors are using various attack vectors such as credential stuffing to steal usernames and passwords.…

A company that operates multiple fertility centers across Northern Illinois has suffered a data breach because of a cyberattack.  Fertility Centers of Illinois (FCI) reported that the data breach affected 79,943 current and former patients.  …

A leading provider of school website infrastructure has been hit by a ransomware attack, potentially disrupting thousands of global customers.  Finalsite claims to serve over 8000 schools worldwide, offering content management, communications,…