News
-
"New Methods Could Improve Security Of Two-Factor Authentication Systems"A team of researchers at Texas A&M University has designed new easy-to-use methods to counter vulnerabilities contained by push notification-based two-factor authentication (2FA) systems. Many online services have implemented push notification-based…
-
"North Korea APT Lazarus Targeting Chemical Sector"Researchers at Symantec have detected signs of North Korea's Lazarus Advanced Persistent Threat (APT) group targeting the chemical sector. The Lazarus group's latest attacks against the chemical sector and IT companies in South Korea indicate the…
-
"Open Sharing of Biotechnology Research: Transparency Versus Security"The likelihood of accidental or deliberate misuse of biological research increases as biotechnology increases. At the same time, public sharing of research data and protocols, and other open science practices, have become more widespread. James Smith and…
-
"MetroHealth Data Breach Involved 1700 Patients"The MetroHealth System in Cleaveland, Ohio, recently discovered that it had been the victim of a data breach involving 1700 of its patients. In a recent statement, MetroHealth announced that on November 13, while the health system’s electronic…
-
"Elementor Fixes Critical Bug in Popular WordPress Plugin"The developer of a popular WordPress plugin has updated its product to fix a critical vulnerability that could be exploited to change the appearance of websites. Elementor is marketed as a leading website building platform for WordPress, enabling…
-
"OldGremlin Ransomware Gang Targets Russia With New Malware"A cybercriminal group called OldGremlin has returned after a hiatus of more than one year. The group is known to be highly skilled in running carefully planned and scattered campaigns. OldGremlin is different from other ransomware operations because of…
-
"Researchers Find Security Flaw in Rarible: Users Could Have Lost All Their NFTs"Researchers at Check Point have identified a vulnerability in the Rarible Non-Fungible Token (NFT) marketplace, which could have resulted in nearly two million active users losing their NFTs in one transaction. An NFT is defined as a unit of data stored…
-
"US Warns of State-Backed Malware Designed to Hijack Critical Infrastructure Systems"An advisory, recently published jointly by the Cybersecurity and Infrastructure Security Agency (CISA), the FBI, NSA, and the Department of Energy, warns that threat actors have developed a custom toolkit that enables them to scan for, compromise, and…
-
"Justice Department Seizes Major Cybercrime Spot RaidForums"The Department of Justice (DOJ) seized the popular online cybercriminal marketplace RaidForums. The takedown is the latest massive sweep by the U.S. government and international law enforcement partners of online marketplaces where hackers buy and…
-
"Spring Framework Flaw Exploited in Mirai Malware Attacks"A high-severity Remote Code Execution (RCE) vulnerability previously discovered in the Spring framework has been exploited by hackers since April to deploy the Mirai botnet malware on vulnerable devices in a likely attempt to execute Distributed Denial-…
-
"DHS Investigators Say They Foiled Cyberattack on Undersea Internet Cable in Hawaii"Last week, Hawaii-based agents with Homeland Security Investigations (HSI), an arm of the Department of Homeland security (DHS), “disrupted” an apparent cyberattack on an unnamed telecommunication company’s servers associated with an underwater cable…
-
"FIU and UAlbany Researchers Team Up to Launch $1.5 Million Virtual Cybersecurity Institute"An interdisciplinary group of researchers from Florida International University and the University at Albany will co-lead a new $1.5 million virtual institute aimed at training the next generation of cybersecurity professionals for military and civilian…