Application Programming Interfaces (APIs) face the same vulnerabilities as regular web applications. According to Forrester Research, as APIs enable direct external access to transaction updates and mass data, they are subjected to more threats than…

Three critical privilege-escalation vulnerabilities were discovered in a WordPress plugin, impacting 100,000 websites. Wordfence's Threat Intelligence Team detected the flaws in Ultimate Member, which is a free user profile WordPress plugin that supports…

Apple has released patches for three critical vulnerabilities discovered in its software used for iPhones, iPads, and iPods. Two of the critical bugs impact the core of the device's operating system called the kernel, responsible for handling…

Computer scientists at the Columbia University developed a new tool called CRYLOGGER to detect when an Android app is misusing cryptography. The tool detects whether an Android app violates guidelines set by expert cryptographers and organizations such…

Engineers at Southwest Research Institute simulated an attack on the charging process of an electric vehicle (EV) to bring further attention to the cybersecurity vulnerabilities associated with EV charging. They reverse-engineered the signals and…

A widely used hotel reservation platform called Cloud Hospitality has exposed 10 million files related to guests at various hotels worldwide, thanks to a misconfigured Amazon Web Services S3 bucket. Cloud Hospitality is used by hotels to integrate their…

Researchers from the Pacific Northwest National Laboratory (PNNL) worked with utility advisors and companies specializing in vulnerability identification to develop two new web-based tools aimed at mitigating cybersecurity vulnerabilities in operational…

Mattel, one of the largest toy manufacturers in the world, recently fell victim to a ransomware attack in July on its information technology systems. The attack temporarily impacted its business functions. However, no data regarding business operations,…

The United Kingdom's National Cyber Security Center's (NCSC) annual threat report revealed that U.K. organizations experienced an average of 60 cyberattacks per month from September 2019 to August 2020. The NCSC's defense system stopped more than 15,000…

In a new report released by McAfee researchers examining cybercriminal activity related to malware and the evolution of cyber threats in Q2 2020. The researchers found there was an average of 419 new threats per minute as overall new malware samples grew…

There has been a rise in ransomware attacks against large companies and critical organizations such as those that provide medical care. A hacker is currently threatening to publicly release data stolen from Finland's health care and mental health…

Researchers in Carnegie Mellon University's CyLab have developed the fastest open-source intrusion detection system. The system achieves speeds of 100 gigabits per second using a single server with five processor cores. The success behind the performance…