News
-
"Cyber-Attacks Are Primary Funding Source for North Korea"According to researchers at Venafi, cybercrime is now the primary means by which the North Korean state is funded. The researchers analyzed publicly available information on state-sponsored attacks directed by the hermit kingdom over the past four years…
-
Pub Crawl #51Pub Crawl summarizes, by hard problems, sets of publications that have been peer reviewed and presented at SoS conferences or referenced in current work. The topics are chosen for their usefulness for current researchers.
-
"BIOSConnect Code Execution Bugs Impact Millions of Dell Devices"Eclypsium researchers have discovered a series of vulnerabilities in the BIOSConnect feature of Dell SupportAssist that could allow attackers to remotely execute code on Dell machines. Dell SupportAssist is used to manage support functions, including…
-
"Zephyr RTOS Fixes Bluetooth Bugs That May Lead to Code Execution"Security patches were released earlier this month for the Zephyr real-time operating system (RTOS) used for embedded devices. The patches fix multiple vulnerabilities that can lead to a denial-of-service (DoS) condition and remote code execution if…
-
"Attacks Against Container Infrastructures Increasing, Including Supply Chain Attack"The frequency and sophistication of attacks against the container infrastructure continues to grow. Using internet scanning tools such as Masscan, a new vulnerable container can be detected within a few hours. Aqua Security's Cloud Native Report shares…
-
SoS Musings #50 - Moving Automotive Cybersecurity into the Fast LaneSoS Musings #50 - Moving Automotive Cybersecurity into the Fast Lane
-
Spotlight on Lablet Research #19 - Mixed Initiative and Collaborative Learning in Adversarial EnvironmentsSpotlight on Lablet Research #19 - Mixed Initiative and Collaborative Learning in Adversarial Environments
-
Cybersecurity Snapshots #19 - Are Smart Home Gym Equipment and Health and Fitness Apps Secure?Cybersecurity Snapshots #19 - Are Smart Home Gym Equipment and Health and Fitness Apps Secure?
-
"Gaming Industry Experiences 340% Spike in Web App Attacks"According to a new report by Akamai, researchers found that web application attacks targeting the video game industry grew by a higher rate than any other sector during the COVID-19 pandemic. Web application attacks surged by 340% in 2020 compared to…
-
"Nearly 10% of SMB Defense Contractors Show Evidence of Compromise"Cybersecurity vendor BlueVoyant conducted a new study and analyzed a representative sample of 300 smaller contractors from a defense industrial base (DIB) estimated to have anywhere from 100,000-300,000 suppliers. The researchers uncovered signs of…
-
"Connecting to Malicious Wi-Fi Networks Can Mess With Your iPhone"A bug has been discovered in iOS that can disable Wi-Fi connectivity for iPhones when they join a network that uses the SSID "%p%s%s%s%s%n." The device loses the ability to join any networks in the future when they connect to that Wi-Fi network.…