The U.S. Homeland Security Department's Cybersecurity & Infrastructure Security Agency (CISA) recently published advisories about vulnerabilities in Kepware products discovered by researchers at the industrial cybersecurity firm Claroty. One of the…

Microsoft released patches for a record number of common vulnerabilities and exposures in 2020, many of which impacted the Microsoft Remote Desktop Protocol (RDP). The Remote Desktop service proved essential during the COVID-19 pandemic as many…

The U.S. Homeland Security Department's Cybersecurity & Infrastructure Security Agency (CISA) issued a warning about the significant impact of the recent SolarWinds Orion software supply chain hacking attack. The attack on SolarWinds' Orion IT…

The National Institute of Standards (NIST) has released a draft version of Special Publication (SP) 800-213 and a number of supporting documents developed to provide cybersecurity guidance to manufacturers of Internet of Things (IoT) devices. The draft…

Researchers at security firm Cybereason have found that cybercriminals are targeting online shoppers in the U.S. and Western Europe with fake Amazon gift cards that deliver the Dridex banking Trojan.  Since the phishing campaign began earlier this…

Law enforcement agencies from the US, Germany, France, Switzerland, and the Netherlands have seized this week the web domains and server infrastructure of three VPN services that provided a haven for cybercriminals.  The three services were active…

A warning was recently issued by the Federal Bureau of Investigation (FBI), the Department of Health and Human Services Office of Inspector General (HHS-OIG), and the Centers for Medicare & Medicaid Services (CMS) about scammers' continued efforts to…

The current approach to cybersecurity in the public sector appears to be ineffective, as indicated by the continued growth in the sophistication and frequency of cyberattacks, in addition to the increase in spending on cybersecurity. More than $173…

IBM Security has launched a new service that lets companies experiment with Fully Homomorphic Encryption (FHE). This encryption scheme enables computers to perform operations on encrypted data without having to decrypt it, further enhancing the privacy…

Citrix has reported that its Citrix Application Delivery Controllers (ADCs) were hit by a Distributed Denial-of-Service (DDoS) attack. ADCs are networking products that allow security and network teams to manage application delivery speed and quality.…

Dan Fein, the Director of Email Security Products at the AI cybersecurity company Darktrace, gave his predictions about new tactics and techniques that email attackers could use in 2021. According to Fein, attackers will attempt to commit more supply…

A team of researchers from the University of California, Santa Barbara (UCSB), Purdue University, and the Swiss Federal Institute of Technology Lausanne (EPFL) received a four-year, $3.9 million grant from the Defense Advanced Research Project Agency (…