A cybersecurity consultant discovered millions of retailers' records online in an unsecured Elasticsearch server on April 5th.  The consultant was unsure whom the data belonged to. However, upon closer inspection, the consultant noticed many 'test'…

The Cybersecurity and Infrastructure Security Agency's (CISA) National Risk Management Center (NRMC) is working to assess and identify security risks for 5G wireless services. Dan Dagher, supply chain risk management initiative lead at NRMC, recently…

The National Cyber Security Centre (NCSC), which is a part of the Government Communications Headquarters (GCHQ), has launched free cybersecurity training for school teachers and staff in the UK to help British schools improve their defense against…

The Housten Rockets have hired cybersecurity experts after an unknown adversary tried to install ransomware on the basketball franchise's internal computer systems but was largely unsuccessful.  Cyber defenses put in place by the team before the…

The National Institute of Standards and Technology (NIST) has released a new version of its test and measurement tool developed to monitor the dynamics of the global Resource Public Key Infrastructure (RPKI) as well as the effects of RPKI Route Origin…

The National Initiative for Cybersecurity Education (NICE) program at the National Institute of Standards and Technology (NIST) has teamed up with marketing and cybersecurity games company Katzcy to launch the first US Cyber Games. Consisting of the US…

Security researchers from Sophos have discovered that the volume of malware hidden in encrypted traffic has doubled over the past few months as threat actors look to circumvent security tools.  The researchers claim that 23% of the detected malware…

Researchers with Check Point Research discovered a new malware variant called ToxicEye. According to the researchers, ToxicEye possesses both data exfiltration and ransomware capabilities. It also leverages the popular Telegram messaging platform for…

Researchers from Germany's Technical University (TU) of Darmstadt uncovered two flaws in AirDrop's protocol. Airdrop is a feature built into about 1.5 billion Apple devices that allows Mac and iPhone users to seamlessly share and transfer files, photos,…

The US Department of Homeland Security's (DHS) Cybersecurity and Infrastructure Security Agency (CISA) has issued advisories warning of ICS vulnerabilities in the Horner Automation Cscape software and the Mitsubishi Electric GOT. The control system…

The mobile technology provider Upstream released a new report exploring the state of the mobile market during the COVID-19 pandemic and delving into the challenges that are expected to be experienced in 2021 regarding fraud and malware. The report…

The cybersecurity firm Sophos reports a significant increase in malware using the Transport Layer Security (TLS) to hide malware communications. Although HTTPS helps prevent man-in-the-middle (MITM) attacks, attempts at impersonating trusted websites,…