Researchers at the industrial cybersecurity firm Nozomi Networks discovered several vulnerabilities in some of Philips' medical products, including the IntelliBridge hub, Patient Information Center iX (PIC iX), and Efficia CM Series. Philips and the US…

Vestas Wind Systems, one of the world's largest wind turbine manufacturers, discovered a cybersecurity incident on November 19, 2021, and has since then been working together with external partners to contain the situation and mitigate its impact.…

The US Department of Energy (DOE) announced the University of Central Florida as the national winner of its seventh CyberForce Competition, which challenged 120 US college and university teams from 33 states and the District of Columbia to stop a…

Sometimes companies conduct privacy reviews on new applications or services to identify any potential privacy issues before they are released. Privacy reviews are typically carried out with involvement from privacy experts and lawyers. Therefore, these…

A team of computer scientists from the University of California San Diego and Brave Software developed a tool named SugarCoat to protect users' private data while they browse the web. The tool targets scripts that harm users' privacy, such as those used…

New research from Bugcrowd found that around 80 percent of ethical hackers have recently discovered a vulnerability that they had not seen before the pandemic. Of the ethical hackers, 74 percent agreed that the number of vulnerabilities has increased…

Researchers at Identity Theft Resource Center have found a "shockingly high" disconnect between awareness of best practices following a data breach and actions taken.  The researchers polled over 1000 US consumers to gauge their understanding of and…

Banks must report major cybersecurity incidents to federal officials within 36 hours under a rule that U.S. financial regulators finalized on Thursday.  Beginning in May 2022, financial executives will need to be more forthcoming about computer…

Research conducted by SeclarityIO analyzed data on a phishing kit called PerSwaysion, which has been used in thousands of attacks worldwide and is a significant threat to organizations across multiple sectors. The phishing kit allows cybercriminals to…

According to a new report from Barracuda, bait attacks performed through free email services such as Gmail increase Asia-Pacific organizations' vulnerability to phishing and other email threats. Bait attacks involve an initial email designed to harvest…

According to a white paper recently released by Medigate and Crowdstrike, more than 80 percent of healthcare organizations reported experiencing a security incident involving Internet of Things (IoT) devices over the past 18 months. Although…

American K-12 school districts are vulnerable to cyberattacks targeting data in cloud applications, according to researchers at EdWeek Research Center. The researchers conducted an online survey between July 14 and September 15, 2021, that was filled out…