US Cyber Command has revealed 20 new strains of malware being used against Ukrainian targets. The Pentagon's cyberspace wing made indicators of compromise (IOCs) associated with various malware strains discovered in Ukrainian networks by the country's…

Tens of millions of users of a popular virtual pet site may have had their data compromised in the first known US mega breach of 2022.  Neopets is owned by US giant Viacom.  Viacom stated that Neopets recently discovered that customer data may…

Security experts at Avanan warn users not to fall for a new threat campaign using PayPal to send out phishing invoices.  PayPal domains are usually “allow-listed” by organizations’ email filters.  So cybercriminals are registering accounts and…

Bandai Namco, a popular game publisher, has admitted to a suspected ransomware attack that may have compromised customer data. The company's internal systems in Asia, excluding Japan, were breached, according to an official statement. Bandai Namco did…

The Ukrainian media outlet TAVR Media announced that it had been hacked to spread false information about President Zelenskiy's critical condition and intensive care placement. The network runs nine major radio stations in Ukraine, including Hit FM,…

A new Osterman Research report codifies businesses' increasing reliance on mobile apps, revealing the disparity between the strategic importance of apps and the level of focus and resources applied to protect organizational apps from runtime threats.…

The Transportation Security Administration (TSA) has revised and reissued its Security Directive on oil and natural gas pipeline cybersecurity. This revised directive will continue the effort to strengthen the cybersecurity of the nation's critical…

Scientists and health officials have relied on COVID-19 contact-tracing technologies to help manage the virus's spread. However, there is a major flaw in the framework used by many of these mobile apps that attackers could exploit to increase false…

Censys has announced that it mapped several servers involved in the MedusaLocker criminal network as proxies or ransomware victims by scanning the Internet for common red-teaming tools. In late June, the company published a report on the prevalence of…

Atlassian recently announced patches for two critical Servlet Filter vulnerabilities that impact multiple products across its portfolio.  Servlet Filters are pieces of Java code designed to intercept and process HTTP requests sent between a client…

The US Government has recently launched a new initiative to boost the number of people in cybersecurity-related apprenticeship programs, thereby tackling the well-publicized cyber-skills gap.  The Cybersecurity Apprenticeship Sprint campaign is…

Cisco recently announced the availability of patches for multiple vulnerabilities in Nexus Dashboard, including a critical-severity issue that could lead to the execution of arbitrary commands.  The Nexus Dashboard is a data center management…