HOTSOS 2022 BEST POSTER AWARD Congratulations to Samin Yaseer Mahmud & William Enck at NCSU for winning the HoTSoS Best Poster Award for their poster A Study of Security Weakness in Android Payment Service Provider SDKs.  Check out…

A team at Website Planet has found that a configuration error exposed millions of internal records traced back to Fox News, including personally identifiable information on employees.  The researchers claimed that anyone with an internet connection…

A leading US payments company is contacting over eight million current and former customers of its Cash App Investing subsidiary that a malicious insider may have accessed their details.  San Francisco-headquartered Block revealed the news in an SEC…

Researchers at North Carolina (NC) State University have developed a new method that uses hardware and software to strengthen file system security for next-generation memory technologies called Non-Volatile Memories (NVMs). Their encryption technique…

A team of researchers has developed an algorithm, which is a new Byzantine Fault Tolerance (BFT) consensus protocol, to improve the resiliency, efficiency, and speed of blockchains. The new BFT consensus protocol can overcome faults and avoid system…

A new study in the International Journal of Networking and Virtual Organizations explores the use of deep learning to detect Distributed Denial-of-Service (DDoS) attacks, which could help service providers lessen the effects of these attacks. According…

The Science of Security and Privacy 2022 Annual Report is now available. This report highlights the progress and accomplishments of the Science of Security and Privacy initiative.      

Organizations have become increasingly dependent on Internet-based technologies for building management systems, Internet of Things (IoT) devices, operational technology, and other physical assets. These technologies introduce new security…

A study conducted by a team of researchers at the University of Pittsburgh Swanson School of Engineering found that the Graphics Processing Unit (GPU) in some Android smartphones could be used to eavesdrop on a user's credentials when they type them…

Security researcher Karl Koscher and his colleagues explored what happens when an old satellite has been decommissioned and transitioned into a graveyard orbit. They were given permission to access and broadcast from a Canadian satellite called Anik F1R…

The United States House of Representatives has passed a bill that would change how cybercrime is tracked, measured, and reported by the federal government.  The Better Cybercrime Metrics Act was approved by the House in a bipartisan 377-48 vote.…

Customers of a popular cryptocurrency hardware provider have been urged not to reply to any official-looking emails after a convincing phishing campaign was uncovered.  Trezor makes hardware devices that customers can use to store their digital…