Scores of ransomware attacks on US schools and colleges last year may have cost them over $6bn, according to a new report published by researchers at Comparitech.  The researchers analyzed the 77 attacks reported by educational institutions…

Bangkok Airways issued a statement to its customers apologizing for a data breach involving their passport information and other personal data. According to the company, the cybersecurity incident occurred because of unauthorized and unlawful access to…

President Joe Biden recently met with leaders of larger technology companies and platform providers to discuss options for addressing security threats and technical debt facing the U.S. The meeting resulted in Google, Microsoft, IBM, and other companies…

​Pub Crawl summarizes, by hard problems, sets of publications that have been peer reviewed and presented at SoS conferences or referenced in current work. The topics are chosen for their usefulness for current researchers.

Many commonly reported cyberattacks, such as distributed denial-of-service (DDoS) attacks, focus on software vulnerabilities. With the growing risks of corporate or state espionage via hardware, such as the hiding of malicious Trojan circuits on a…

Higher education providers have become an increasingly attractive target for state-sponsored actors in cyberattacks. The number of publicly acknowledged cybersecurity incidents impacting Australian universities have risen this year. Earlier…

A New Hampshire town is reeling from the "very shocking" cybercrime that claimed more than 14% of its annual budget.  Peterborough is a town of 7000 people, with a budget for the fiscal year of just over $15.8m. Adversaries conned the town out of $2…

There were 24 percent more distributed denial-of-service (DDoS) attacks in 2020 than in 2019. DDoS attacks increased by 55 percent between January 2020 and March 2021. According to both F5 Networks and IBM X-Force, government agencies were the sixth most…

Security researchers at Nazomi Networks have discovered another critical bug in IoT security camera systems that could allow attackers to hijack devices.  The researchers found a remote code execution vulnerability CVE-2021-32941 in the web service…

Microsoft is warning thousands of its cloud computing customers that intruders could be able to read, change, or delete their main databases. A research team at the security company Wiz discovered the vulnerability in Microsoft Azure's flagship Cosmos DB…

The SANS 2021 OT/ICS Cybersecurity Report shares findings from a survey of 480 individuals from a wide range of industries. The survey showed that almost 70 percent of respondents believe their Operational Technology (OT) environments face high or severe…

The Ragnarok gang, also known as Asnarok, closed up shop this week, publishing the news to their public website. The cybercriminal group has been active since late 2019.  As a parting “gift,” the group released their decryptor, hardcoded with a…