Security researchers have observed an increase in ransomware attacks targeting network-attached storage (NAS) and backup storage devices. Ransomware continues to be a major threat to enterprises, hospitals, and utilities. NAS systems are devices…

Email remains a weakness in security as highlighted by the ongoing exploitation of a flaw in Microsoft Outlook that was disclosed and patched in October 2017. The U.S. Cyber Command issued a warning about the exploitation of the vulnerability in…

Researchers from Visa's Payment Fraud Disruption (PFD) team have found a new JavaScript-based payment card skimmer, dubbed Pipka, which has affected 16 e-commerce websites. Web skimming refers to the injection of malicious scripts into online merchant…

The FBI recently issued a warning to consumers about the threat posed by unsecured smart TVs to their security and privacy. According to a statement released by the Oregon branch of the FBI, cybercriminals can abuse an inadequately secured TV connected…

Florida's Secretary of State, Laurel Lee, recently discussed the insecurity of state and county elections websites with the governor's Cybersecurity Task Force. She stressed the importance of bolstering the security of these websites against hackers as…

Researchers discovered that some third-party apps on Facebook and Twitter have quietly scraped personal information from people's accounts without their consent. Some third-party iOS and Android apps use "malicious" software development kits (SDKs). The…

PXL Vision, a spin-off from the ETH Zurich, one of the leading international universities for technology and the natural sciences, offers a more secure and easier solution for verifying the identity of a person. Identity verification is essential in…

Microsoft has been working on a project called Project Verona. This project is an ambitious plan to stop common vulnerabilities hiding in old Windows code by using an implementation of the open-source Rust programming language. Traditionally Microsoft…

Researchers who investigate the Dark Web are seeing an increase in the distribution of stolen company data by rogue employees. Researchers have seen rogue employees selling data stolen from the organizations at which they are employed as well as the…

A security researcher, named Avinash Jain, found a vulnerability in India's state-run health portal, which is used by patients to book appointments at government hospitals online. The vulnerability allowed him to access sensitive details about a patient…

Vasileios Chatzistefanou and Konstantinos Limniotis, researchers at the Open University of Cyprus, did a study on the security of five anonymous social media applications to find out if they allow third parties to access personal data or track users. The…

A new Android vulnerability, called StrandHogg, could be exploited by attackers to steal mobile banking credentials and money from bank accounts. The discovery was made by the Norwegian app security company, Promon, after being informed by Wultra, an…