In January, students at Brooklyn Technical High School reportedly stumbled across a Google Drive containing documents uploaded by staff and students at schools across New York City. Among the documents were college recommendation letters, classwork, and…

White Hacker returns millions in cryptocurrency hacked from Poly Network last week. The company has decided to offer the hacker a $500K bug bounty. The white hat hacker had stated that he/she had initiated the hack for fun—and was motivated to…

Cybersecurity researchers at Abnormal Security have released details about an amateur ransomware campaign in which social engineering is used in an attempt to trick employees into installing DemonWare ransomware on their organization's network, in return…

The Coast Guard Cyber Command, Maritime Cyber Readiness Branch issued an alert to the Maritime community, recommending that they examine their systems to determine if they have BlackBerry QNX versions 6.5 or below, or any of the other products recently…

Birol Yeşilada, government faculty and director of Portland State University's (PSU) Mark O. Hatfield School of Government, is the principal investigator of a new two-year $2 million grant awarded to PSU by the National Security Agency (NSA). This grant…

The U.S. Homeland Security Department's Cybersecurity and Infrastructure Security Agency (CISA) has shared guidance on how government and private sector organizations could prevent data breaches caused by ransomware attacks. CISA's guidance covers best…

Fortinet's Web Application Firewall (WAF) platform FortiWeb contains an Operating System (OS) command injection vulnerability that could allow hackers to take over a device and run commands on it. According to researchers at Rapid7, the bug in FortiWeb's…

A government inspector has heavily criticized the US Census Bureau after a 2020 breach which could have been prevented by prompt patching.  Although the attacker could not access servers used for the 2020 census, they could modify user account data…

Researchers at Absolute Software conducted new research that revealed the significant management and security challenges faced by K-12 education IT teams with the rise in digital learning and widespread adoption of 1:1 device programs. The researchers…

Most cyberattacks on Internet of Things (IoT) devices are caused by misconfigurations or weak passwords. However, security researchers are concerned about the extensive use of third-party libraries (i.e., collections of code vendors might use in their…

Hornetsecurity, a cloud email security provider, surveyed more than 420 businesses that use the Microsoft 365 platform in order to gain insight into how they handle email security in a more decentralized working environment. Results from the survey…

The third Biannual ICS Risk and Vulnerability Report released by the industrial cybersecurity company Claroty reveals a significant increase in the disclosure of ICS vulnerabilities in the first half of 2021 compared to the previous six months. Claroty's…