HoTSoS 2022 Call for Papers! Deadline December 17th! The HoT Topics in the Science of Security (HoTSoS) Symposium is now soliciting submissions for the 2022 program. Following the success of the virtual HoTSoS Symposium in 2021, HoTSoS`22 will…

Researchers at Nordpass analyzed password habits worldwide and revealed that we are still performing poorly regarding strong credential management. Major online service providers now often enforce strong passwords with lower-case and capital letters,…

Security researchers with Positive Technologies shared information about two vulnerabilities found in Diebold Nixdorf ATMs. The exploitation of these security flaws could have allowed an attacker to replace the firmware on the system and withdraw cash.…

The FBI discovered that hackers sent a barrage of fake emails over the weekend using an FBI email account to falsely warn recipients that an attacker stole their information.  The nonprofit spam-tracking service Spamhaus Project estimated that the…

Cybersecurity researchers at AT&T Alien Labs detailed BotenaGo, a new form of Internet of Things (IoT) malware that leverages more than 30 different exploits. According to the researchers, BotenaGo applies different methods to attack targets and…

Security researchers at NortonLifeLock conducted a new survey of 700 UK adults who currently play online games and uncovered some alarming trends around gamer-to-gamer cyber risks.   More than two in five (42%) UK gamers have experienced a…

According to researchers with Google's Threat Analysis Group (TAG), a watering-hole attack on Hong Kong websites infected site visitors with new Mac malware. Watering-hole attacks target a specific group of users by infecting the websites that they…

The big-box retail store company Costco has faced a breach at one of its store terminals. A card skimming device was used at a payment counter to steal customers' payment card data. Following the discovery of the payment card skimming device, Costco…

Lazarus, the North Korean state-sponsored hacking group, is targeting security researchers with a trojanized pirated version of the popular IDA Pro reverse engineering application. IDA Pro converts an executable into assembly language, which allows…

According to a warning from researchers at Packstack, a critical security flaw has been discovered in the WP Reset PRO WordPress plugin, which could allow an authenticated user to wipe a website's entire database. Any authenticated user, regardless of…

AMD has revealed 50 new CVE-listed bugs, 23 of which are rated high, meaning they are rated between 7.0 and 8.9 on the Common Vulnerability Scoring System. The AMD Graphics Driver for Windows 10 contains 27 flaws, with 18 of them being rated high. The…

Security researchers at SophosLabs discovered a new cyberattack involving a malware family known as both BazarBackdoor and BazarLoader. In the attack, adversaries use socially engineered emails to scare their targets into opening an attachment and…