Researchers at Avanan have discovered a new cyberattack that spoofs  Amazon to steal victims' financial credentials.  The digital deception combines brand impersonation with social engineering.  The researchers first saw this scam in…

The US Department of Defense (DoD) has scaled back the Cybersecurity Maturity Model Certification Model (CMMC) program it rolled out in 2020 to verify the cybersecurity of DoD suppliers. The implementation of the program has been stopped until the…

The US Homeland Security Department's Cybersecurity and Infrastructure Security Agency (CISA) issued a Binding Operational Directive (BOD), giving federal civilian agencies six months to patch nearly 300 vulnerabilities known to have been exploited in…

A ransomware attack on a laboratory based in Florida has exposed the personal health information (PHI) of more than 30,000 patients.  Nationwide Laboratory Services, which is based in Boca Raton, identified suspicious activity on its network on May…

A recent report from vpnMentor revealed the exposure of personally identifiable information (PII) belonging to thousands of medical school students in the US due to an unprotected Amazon S3 bucket. The server was found to lack security restrictions, thus…

Investors in the new cryptocurrency SQUID tokens have fallen for what cryptocurrency watchers call a classic “rug-pull” scam.  When SQUID tokens were first released last week, they were valued at  $0.01.  On November 1st, the price started…

The National Institute of Standards and Technology (NIST) has drafted cybersecurity criteria for consumer software in an effort towards helping consumers make better decisions when purchasing software. The criteria aims to assist in the development and…

Security researchers at Malwarebytes have discovered that a new Magecart threat actor is stealing people’s payment card info from their browsers using a digital skimmer that uses a unique form of evasion to bypass virtual machines (VM) so it targets only…

Researchers at Sophos conducted a new study on ransomware and based their findings on evidence and insight from a team of 24/7 incident responders who help organizations under active cyberattacks. The researchers found a shift in ransomware pressure…

A team of researchers from the University of Geneva (UNIGE), Switzerland, has developed a new system to secure data transfers based on the physical principle of relativity. As the volume of data transferred continues to grow, it is essential to bolster…

Matthew Channon from the University of Exeter and James Marson from Sheffield Hallam University conducted a study, suggesting that government action is needed for driverless cars to be insured against malicious hacks. Driverless vehicles use software…

A team of researchers with Intel 471 shared their new observations of cybercriminals hitting organizations in the supply chain sector with cyberattacks and claiming to have accessed networks for companies that operate maritime, air, and ground cargo…