News
-
"US AI Safety Institute Signs Agreements Regarding AI Safety Research, Testing and Evaluation With Anthropic and OpenAI"The US Artificial Intelligence (AI) Safety Institute at the Department of Commerce's National Institute of Standards and Technology (NIST) announced agreements enabling formal collaboration on AI safety research, testing, and evaluation with Anth
-
"How Smart Toys Spy on Kids: What Parents Need to Know"Researchers led by Professor Isabel Wagner of the Department of Mathematics and Computer Science at the University of Basel studied the security and privacy of smart toys. The researchers investigated whether data traffic was encrypted and how well.
-
"Innovative Approach to Cryptography Makes Privacy More Personal"Gabriel Kaptchuk, a security and privacy expert and assistant professor of computer science at the University of Maryland, is at the forefront of human-centered cryptography research.
-
"Researchers Find SQL Injection to Bypass Airport TSA Security Checks"Security researchers Ian Carroll and Sam Curry discovered a vulnerability in a key air transport security system that enables unauthorized individuals to bypass airport security screenings and access aircraft cockpits.
-
"Iran's 'Fox Kitten' Group Aids Ransomware Attacks on US Targets"The US Cybersecurity and Infrastructure Security Agency (CISA) and Federal Bureau of Investigation (FBI) have issued a warning regarding Iran's state-sponsored threat group "Fox Kitten" actively helping ransomware actors in attacks against organization
-
"Cyberattackers Exploit Google Sheets for Malware Control in Likely Espionage Campaign"According to Proofpoint researchers, the Command-and-Control (C2) mechanism of a new malware campaign uses Google Sheets.
-
"Threat Actor Lures Victims to Malware-Laden VPN Page via Call, Text"A social engineering campaign targeting over 130 US companies sends employees to a fake malware-laden Virtual Private Network (VPN) page, exploiting concerns about a VPN issue.
-
"North Korean Hackers Launch New Wave of npm Package Attacks"Researchers at Phylum have discovered a coordinated campaign involving North Korea-linked threat groups targeting the npm ecosystem.
-
"US Government Issues Advisory on Ransomware Group Blamed for Halliburton Cyberattack"The US Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), the Department of Health and Human Services (HHS), and the Multi-State Information Sharing and Analysis Center (MS-ISAC) issued a joint adv
-
"APT29 Watering Hole Attacks Used Spyware Exploits"The Russian-based APT29 group used the same iOS and Google Chrome exploits as NSO Group and Intellexa in an espionage campaign against the Mongolian government.
-
"Researcher Sued for Sharing Data Stolen by Ransomware With Media"The City of Columbus, Ohio, has taken legal action against a security researcher for illegally downloading and distributing data stolen and leaked by the "Rhysida" ransomware gang from the City's Information Technology (IT) network.
-
"Fortra Patches Critical Vulnerability in FileCatalyst Workflow"Cybersecurity solutions provider Fortra recently announced patches for two vulnerabilities in FileCatalyst Workflow, including a critical severity flaw involving leaked credentials.