A team of researchers from the Security & Privacy Research Unit at TU Wien and Ca' Foscari University discovered a new security vulnerability associated with subdomains. Large websites often consist of several subdomains (e.g., "sub.example.com"…

Mercedes Benz has released details of a data breach affecting customers and prospective buyers in the US. The luxury carmaker stated that a vendor had informed them on June 11th that information belonging to customers was inadvertently made accessible on…

Researchers at the antivirus firm Avast discovered malware in cracked versions of popular games, such as The Sims 4, Grand Theft Auto V, Far Cry 5, and more, that have been distributed for free on forums. Malware called Crackonosh was found in these…

The recently introduced bipartisan Federal Cybersecurity Workforce Expansion Act aims to strengthen government cybersecurity by improving the cyber workforce through the creation of two new cybersecurity training programs. These programs include an…

According to a report released by Honeywell, USB threats that can severely impact business operations increased significantly during a disruptive year when the usage of removable media and network connectivity also grew. Researchers found that 37% of…

Following the ransomware attacks on Colonial Pipeline and top meat producer JBS, some government officials have called on Congress and the administration to ban organizations from making ransom payments to threat actors. The goal of such a ban would be…

The Iowa-based Wolfe Eye Clinic was hit with a ransomware attack earlier this year in February, resulting in the access and possible theft of data belonging to 500,000 patients. An unauthorized individual was observed attempting to access the…

WatchGuard Technologies analyzed threat data collected from customer networks during the first quarter of 2021. The analysis revealed that 74 percent of threats detected were zero-day malware, which were able to evade signature-based threat detection…

Personal information belonging to job seekers residing in West Virginia may have been exposed during a security incident at WorkForce West Virginia. The breach was confirmed yesterday by West Virginia governor Jim Justice. In a breach notification that…

The City of Tulsa has learned that the persons responsible for the ransomware attack that it faced in May 2021 leaked more than 18,000 city files on the dark web. According to a statement from the city officials, most of the files are police citations…

The federal research and development organization MITRE has released D3FEND, a framework for cybersecurity professionals to tailor defenses against specific cyber threats. The framework was funded by the National Security Agency (NSA) to strengthen the…

According to Website Planet, a misconfigured cloud database exposed over 800 million records linked to WordPress users before its owner was notified. The trove was left online with no password protection by US hosting provider DreamHost. The data in the…