Researchers have observed phishers exploiting a flaw contained by Google's SMTP relay service to deliver malicious emails that spoof popular brands. There has been a significant surge in SMTP relay service exploit attacks in the wild since April 2022.…

Nozomi Networks, a firm specialized in securing operational technology (OT) and IoT systems, has recently disclosed a potentially severe vulnerability affecting a C standard library used by several major companies.  The affected library is uClibc,…

Researchers at the Southwest Research Institute (SwRI) have developed an Intrusion Detection System (IDS) for Industrial Control Systems (ICS). The technology aims to help government and industry improve the detection of cyber threats to industrial…

At least a dozen firms have been targeted by a new ransomware operation called Black Basta, which is suspected to be linked to the Conti gang. The threat actors behind Black Basta attempt to take large amounts of data from infected systems to further…

Google has been working on finding malicious code packages sneaked into open source software projects. The Open Source Security Foundation's (OpenSSF) Package Analysis Project aims to help automate the process of identifying malicious packages…

Google has been working on finding malicious code packages sneaked into open source software projects. The Open Source Security Foundation's (OpenSSF) Package Analysis Project aims to help automate the process of identifying malicious packages…

Nobelium, the Russian hacking group behind the SolarWinds hack, is setting up new infrastructure to launch attacks using old tricks, researchers at Recorded Future found.  The researchers stated that the group has evolved in recent months in an…

Security researchers at Mozilla have discovered that over 90% of mental wellness and prayer apps contain serious privacy issues, while many others raise cybersecurity concerns.  The researchers found that 29 out of the 32 apps analyzed did not pass…

Quantum mathematicians at the University of Copenhagen have made an advancement towards a new form of security identification that could help protect data from hackers and cybercriminals. They were able to solve a mathematical riddle, which enables the…

Cloudflare has blocked one of the largest Distributed Denial-of-Service (DDoS) attacks ever recorded. According to Cloudflare, the attack bombarded a cryptocurrency platform with 15.3 million requests. DDoS attacks are measured in different ways,…

The threat group known as TA410 has been found to be composed of three groups, each of which has its own toolsets and targets. The threat group, which has launched sophisticated cyberespionage attacks against US utilities, has been in operation globally…

Recently the U.S. Cybersecurity and Infrastructure Security Agency (CISA), U.S. National Security Agency (NSA), U.S. Federal Bureau of Investigation (FBI), Australian Cyber Security Centre (ACSC), Canadian Centre for Cyber Security (CCCS), New Zealand…