Check Point researchers discovered another security hole in Zoom that has now been patched. The exploitation of this vulnerability could have allowed attackers to impersonate legitimate business accounts in order to trick users into giving up their Zoom…

Twitter recently faced an attack that led to the compromise of accounts belonging to Barack Obama, Bill Gates, Elon Musk, and other prominent users to promote a bitcoin scam. Michael Borohovski, director of software at the security firm Synopsys,…

U.S. colleges and universities continue to be targeted in ransomware attacks. In addition to implementing measures for protecting campus communities from the COVID-19 pandemic, college and university leaders must advance efforts to improve the protection…

New research was conducted by NSS Labs to discover how good Google Chrome, Microsoft Edge, Mozilla Firefox, and Opera were at providing malware protection and phishing protection.  The researchers found that phishing protection rates ranged from 79.…

U.S., U.K., and Canadian government officials warn that the Russian government hacking group known as Cozy Bear or APT29 has been targeting coronavirus vaccine research.  They have targeted organizations in all three countries.   The hacking is…

Researchers from the security firm, Darktrace, have reported attackers' use of fraud alerts in a phishing campaign that targets Chase customers. According to Darktrace, the emails in this campaign contain legitimate Chase URLs and images. These…

According to research by Akamai, the number of credential stuffing attacks against media and video companies increased significantly. The company found that the media industry experienced 17 billion credential stuffing attacks between January 2018 and…

Fake Cisco devices led to the failure of an IT company's network switches following a software upgrade, further highlighting the threat posed by counterfeit hardware. An investigation of the incident by F-Secure's hardware security team revealed two…

Researchers in a study conducted in 2019 found that most companies allow mobile devices to access between 1/3 and 3/4 of their most business-critical information.  The BYOD trend where people use their personal devices for work activities was on the…

The knock code authentication scheme, popularized by LG in 2014, is not as safe or effective as users think. Knock codes allow smartphone owners to create tap patterns that they could use to unlock their phone. A team of researchers from the New Jersey…

Microsoft is issuing a patch for a 17-year-old wormable Windows Domain Name System (DNS) Server vulnerability discovered by a researcher at Check Point. The exploitation of the DNS Server flaw would allow attackers to intercept users' emails and network…

Researchers have discovered that there are more than 15 billion stolen account credentials that are up for sale on cybercrime forums.  Five billion of the stolen credentials up for sale are considered unique, meaning that they have not been offered…