Norway's public and private sector websites were temporarily down on Wednesday following a cyberattack that targeted the country's national data network, forcing it to suspend online services for several hours.  Sofie Nystrøm, head of the Norwegian…

Security researchers at Tetra Defense have discovered that attackers continue to find significant success targeting unpatched servers and vulnerable remote-access systems.  These compromises cost victim organizations 54% more than compromises caused…

​Pub Crawl summarizes, by hard problems, sets of publications that have been peer reviewed and presented at SoS conferences or referenced in current work. The topics are chosen for their usefulness for current researchers.

Researchers at Monash University and the Oceania Cyber Security Centre (OCSC) are working with Pacific governments to assess their current cybersecurity situations and make recommendations for the path ahead. Leaders from several Pacific nations recently…

A new and simple scanning tool has revealed some flaws in widely used web cybersecurity programs. The tool also demonstrates how these flaws can be addressed. Websites and web applications have recently become a popular target for cybercriminals…

Security researchers at Sonar have discovered a new flaw in RARlab’s UnRAR utility that could be exploited to steal emails from individual Zimbra mail user accounts.  The path traversal vulnerability, found in the Unix versions of UnRAR, has been…

Microsoft has recently patched a vulnerability that could allow an attacker with access to an Azure Linux container to escalate privileges and take over the entire cluster.  The vulnerability is tracked as CVE-2022-30137 and impacts Service Fabric,…

The US Department of Commerce has announced a new initiative to collaborate with universities to protect potentially sensitive research products from theft by foreign agents. The Commerce Department's assistant secretary for export enforcement, Matthew S…

A leading UK producer of frozen ready meals has revealed its systems are currently down after experiencing a serious cyberattack.  Wiltshire Farm Foods said on Sunday that it is “currently experiencing severe difficulties” with its computer systems…

Personal information of all concealed carry permit holders in California was exposed after the state Department of Justice suffered a data breach.  On Tuesday, the Fresno County Sheriff's Office learned of the breach from the California State…

The White House mandated post-quantum cybersecurity (PQC) earlier this year via the National Security Memorandum "Promoting US Leadership in Quantum Computing While Mitigating Risks to Vulnerable Cryptographic Systems." In addition, the Quantum Computing…

SoS Musings #62 - Increasing the Power of Cybersecurity Deception