The email security provider Inky has released a report detailing a new phishing campaign in which both Craigslist and OneDrive are used to trick people into installing malware. The attackers behind the phishing campaign used different tactics to pull off…

A threat actor, which has not yet been identified, has been seen exploiting a vulnerability contained by the time and billing system BillQuick to execute ransomware attacks. Cybersecurity researchers at Huntress were alerted of an incident…

Ido Hoorvitch, a security researcher at the identity and access management provider CyberArk discovered that he could recover network passwords for over 70 percent of the networks he scanned just by using information gathered as he biked, walked, or…

CALL FOR PAPERS Association for the Advancement of Artificial Intelligence (AAAI) Artificial Intelligence for Cybersecurity (AICS) Feb 22 - March 1, 2022  |  Vancouver, BC, Canada  |  http://aics.site/AICS2022

Security researchers at Deloitte did a new study where they surveyed  577 C-suite executives worldwide on their organization’s cybersecurity programs.  The researchers found that almost all (98%) US-based organizations and 86% of non-US…

Recent advances in artificial intelligence (AI) technologies show promise for autonomous cyber operations (ACO), offering the potential for distributed, adaptive defensive measures at machine speed and scale. The cyber domain is a particularly…

According to researchers at (ISC)2, the global cybersecurity skills shortage has fallen for the second consecutive year, but the size of the workforce is still 65% below what it needs to be.  The researchers interviewed 4,753 cybersecurity…

The Defense Advanced Research Projects Agency's (DARPA) System Security Integration Through Hardware and Firmware (SSITH) program aims to develop Application-Specific Integrated Circuit (ASIC) hardware with new protections that can mitigate software…

Researchers at the industrial cybersecurity firm Claroty discovered 17 types of vulnerabilities in the Versiondog data management product made by Germany-based AUVESY. The flaws, which have now been patched by the vendor, affected Versiondog, a product…

The Russia-based hacking gang REvil has been hacked and forced offline by law enforcement and intelligence agencies in the U.S. and partner countries. REvil was behind the ransomware attack against Colonial Pipeline in May, which led to a rise in gas…

According to Microsoft, the group behind the SolarWinds attack, Nobelium, is now targeting technology companies that resell and provide cloud services for customers.  The researchers stated that Nobelium has been attempting to replicate the approach…

Security researchers at Emisoft claim to have saved BlackMatter ransomware victims millions over the past few months after exploiting a bug they found in the malware to recover files for free.  The researchers stated that they have been building…