A researcher named Csaba Fitzl discovered some new Apple macOS vulnerabilities by studying and analyzing previous bug reports. One of the vulnerabilities he discovered was a mirror image of a logic flaw that a team of researchers found and executed at…

Nokia has recently opened the Advanced Security Testing and Research (ASTaR) lab, an end-to-end 5G testing lab focused on cybersecurity.  Nokia stated that ASTaR will use and develop “cutting-edge tools and techniques” to assess the security…

Researchers at Proofpoint have discovered a stealthy, feature-rich malware that has multistage evasion tactics to fly under the radar of security analysis.  The newly discovered and complex remote access trojan (RAT) is spreading via malicious email…

Researchers at Secureworks Counter Threat Unit (CTU) have found that over the past several months, Iran-linked cyberespionage group Charming Kitten has been engaging in financially-motivated activities.  Charming Kitten is also referred to as APT35…

According to a new study from Tines,  over a quarter (27%) of information security professionals say their mental health has declined over the past year, which has impacted productivity.  The automation specialist polled over 1000 security pros…

Researchers at Perception Point have discovered a previously unseen method for sneaking malicious links into unsuspecting users' email inboxes. The novel phishing method takes advantage of the difference between how email inboxes and browsers read URLs.…

Researchers at the security edge provider Netskope have released a report on global cloud and malware trends, which revealed a 450 percent increase in phishing downloads over the past 12 months. It also highlighted the use of Search Engine Optimization (…

A new threat report from Nuspire brings further attention to the resurgence in the activity of many older botnets, including Mirai, STRRAT, and Emotet. Mirai, which emerged in 2016, taking advantage of insecure Internet of Things (IoT) devices to launch…

Intel's recently announced "Project Amber" is a new service aimed at unifying and authenticating confidential computing across single, multi-, and hybrid-cloud environments. The idea behind confidential computing is to protect data while it is being used…

A week before Oregon's primary election, the secretary of state's office is moving to protect the integrity of its online system where campaign finance records are published after a web hosting provider was hit by a ransomware attack.  People…

HP has released BIOS updates to fix two high-severity vulnerabilities impacting various PC and notebook products. The exploitation of these vulnerabilities enables code to be run with kernel privileges, which are the highest rights in Windows, thus…

Healthcare technology company Omnicell revealed in a filing with the United States Securities and Exchange Commission (SEC) that it recently fell victim to a ransomware attack.  Omnicell is an American multinational company that manufactures systems…