Researchers from McAfee Advanced Threat Research (ATR) discovered a flaw (CVE-2020-25605) in a video-calling SDK from a Santa Clara, Calif.-based company called Agora while doing a security audit last year of a personal robot called “temi,” which uses…

Security researchers have discovered that phishers are trying to trick LinkedIn users into opening a “LinkedIn Private Shared Document” and entering their login credentials into a fake LinkedIn login page.  The phishing message is delivered via…

The power grid has become an increasingly attractive target for cybercriminals. Cybersecurity researchers at Pacific Northwest National Laboratory (PNNL) are developing next-generation tools to bolster the power grid and other critical infrastructure…

The cybersecurity firm FireEye has announced the release of the IDC InfoBrief titled "The Voice of the Analysts: Improving Security Operations Center Processes Through Adapted Technologies." The report shares findings from a survey of 350 internal and…

Researchers from Deep Instinct discovered that malware increased by 358% overall and ransomware increased by 435% compared with 2019.  The distribution of Emotet malware increased significantly in 2020 by 4,000%.  Malware targeting Android…

Andy Bochman and Sarah Freeman, two cybersecurity researchers at Idaho National Laboratory (INL), published a new book titled "Countering Cyber Sabotage: Introducing Consequence-Driven, Cyber-Informed Engineering." The researchers wrote the book to…

Security researchers have discovered a vulnerability affecting multiple baby monitors that could allow an adversary to drop in and view a camera’s video stream.  Potentially hundreds of thousands of live devices are impacted, the researchers stated…

The Financial Services Information Sharing and Analysis Center (FS-ISAC) has revealed that more than 100 financial services firms across Europe, North America, Latin America, and Asia were targeted in a flood of Ransom Distributed Denial-of-Service (…

The Internal Revenue Service (IRS) has had to issue several warnings about the use of the IRS name or logo by scammers seeking to trick consumers into giving access to their financial data to steal their assets. Using the IRS name is a popular tactic…

The ScamClub malvertising group exploited a zero-day vulnerability in the WebKit web browser engine to deliver malicious payloads that redirect users to scams offering gift cards. WebKit is used in Chrome on iOS and Safari. Over the past three months,…

Follow @SoS_VO_org on Twitter! The SoS-VO team is excited to announce that we recently updated the homepage of the website to link to the official Science of Security & Privacy twitter account where we will be making daily announcements about…

Researchers at the Federal Trade Commission (FTC) stated that romance scams remain the most successful fraud strategy for cybercrooks and represent a growing sector.   According to new data, the researchers found that romance schemes accounted for a…