Adversaries are using mobile phishing attacks to target pharmaceutical companies more frequently since the beginning of COVID-19 and have shifted their focus from credential theft to malware delivery. New research shows that 77 percent of pharmaceutical…

The growing vulnerability of critical infrastructure systems to cyberattacks calls for more cybersecurity professionals that can help harden and protect them from unauthorized access. The cybersecurity workforce shortage remains as studies show that…

Rapid7 researchers have brought attention to the security risks that stem from connecting the Tesla Backup Gateway to the internet. The Tesla Backup Gateway is designed to allow the automaker to manage solar and battery/Powerwall installations. It can…

The number of data breaches will increase in the future, and many organizations want to replace passwords with biometric authentication.  Biometric authentication is becoming more widely used by organizations, and it is expected to create a market…

New research from Trend Micro reveals the use of cloud services by cybercriminals to speed up attacks, thus decreasing the time needed for enterprises to identify and respond to an incident. Trend Micro also discovered an underground market called the…

Users may be unaware of the exchange of data that household Internet of Things (IoT) devices, such as the Ring doorbell, Peloton exercise bike, and Nest thermostat conduct with other devices and systems over the network. These devices store various types…

Researchers have discovered an exposed ElasticSearch database used by cybercriminals that revealed a global attack that compromised Facebook accounts. The unsecured database was used by fraudsters to store the usernames and passwords of at least 100,000…

The 2020 Association of the United States Army (AUSA) Annual Meeting and Exposition presented various systems that will be available to the nation's military, many of which will be smart, connected weapons. The expected battlefield advantages offered by…

According to the industrial security company Dragos, the number of documented ransomware incidents experienced by organizations in the manufacturing sector has increased significantly in 2020. Attackers continue to discover new ways to disrupt operations…

Schneider Electric has released advisories about four vulnerabilities found in Modicon M221 Programmable Logic Controllers (PLCs). These vulnerabilities were discovered by researchers at Claroty and Trustwave. According to blog posts published by the…

Researchers at UCL and other institutions have collaborated to develop a machine learning tool that identifies new domains created to promote false information so that they can be stopped before fake news can be spread through social media and online…

Researchers at the Cambridge Cybercrime Center conducted a study on an underground cybercrime forum. They collected and examined data on illicit trades from HackForums, the largest and most popular online cybercrime community. Online underground forums…