FireEye's Mandiant cyber forensics team, working together with the Cybersecurity and Infrastructure Security Agency (CISA) and Ivanti, provided details surrounding 16 malware families designed to infect Ivanti Pulse Connect Secure VPN appliances. These…

The U.S. National Aeronautics and Space Administration (NASA) identified over 6,000 cyber incidents in the last four years. NASA has institutional systems, including data centers, web services, computers, and networks that are used for daily work…

A new report revealed that most organizations plan to invest more money in cybersecurity. However, it remains unclear as to whether additional cybersecurity investments will prepare organizations to face advanced attacks that target the supply chain…

In 2020, a team of researchers at Carnegie Mellon University's CyLab revealed a prototype security and privacy "nutrition label" similar to that of the label placed on a food product to tell consumers how many calories it has. The security and privacy…

The U.S. Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), and the Office of the Director of National Intelligence (ODNI) released a report that explores the potential threat vectors to 5G infrastructure. The report…

The cybersecurity firm Armorblox examined two recent vishing campaigns that spoofed Amazon in an attempt to steal credit card information from unsuspecting victims. In a vishing (voice phishing) attack, a scammer uses social engineering to trick victims…

The United States Federal Bureau of Investigation issued a flash warning Thursday over the exploitation of Fortinet vulnerabilities by advanced persistent threat (APT) groups.  According to the FBI, an APT actor group has been exploiting a FortiGate…

The cybercriminal group behind the notorious SolarWinds attack is at it again with a sophisticated mass email campaign aimed at delivering malicious URLs with payloads enabling network persistence so the actors can conduct further nefarious activities.…

Researchers at Trend Micro conducted a new study where they polled 2300 cybersecurity decision-makers that run Security Operations Centers (SOCs) or SecOps from within their iT security function.  The researchers found that nearly three-quarters of…

Visit the Hints page to solve the Puzzle in the May 2021 edition of Science News magazine. You can solve the puzzle using paper and pencil. (You do not need to write code!) If you're successful, you will have the words that answer the…

Canada's primary postal operator, Canada Post, confirmed Wednesday that it had suffered a data breach.  The security incident occurred following a cyberattack on one of the Crown corporation's suppliers, Commport Communications, which provides…

In a new study, researchers at Imperva found that the volume of compromised records globally has increased on average by 224% each year since 2017.  There were more records reported as compromised in January 2021 alone (878 million) than for the…