-
"Ransomware Attacks Decline as Gangs Focus on Lucrative Targets"Ransomware attacks fell by 50% in Q1 2021 as threat actors shifted from using mass spread campaigns to focusing on fewer, larger targets with unique samples, according to the McAfee Threats Report. The researchers stated that the traditional approach of…
-
"Columbia Engineering Researchers Design New Techniques to Bolster Memory Safety"Columbia Engineering researchers recently presented two major papers at the International Symposium on Computer Architecture (ISCA) that improve the security of computer systems. These new studies have zero to little effect on system performance and are…
-
"Google Announces Unified Schema to Make Sharing Vulnerabilities Easier"Google has announced a unified schema for describing vulnerabilities. The goal of the unified schema is to make it easier to share data on vulnerabilities between databases. An issue with existing vulnerability databases is that each ecosystem or…
-
"Cyber-Attacks Are Primary Funding Source for North Korea"According to researchers at Venafi, cybercrime is now the primary means by which the North Korean state is funded. The researchers analyzed publicly available information on state-sponsored attacks directed by the hermit kingdom over the past four years…
-
Pub Crawl #51
Pub Crawl summarizes, by hard problems, sets of publications that have been peer reviewed and presented at SoS conferences or referenced in current work. The topics are chosen for their usefulness for current researchers.
-
"BIOSConnect Code Execution Bugs Impact Millions of Dell Devices"Eclypsium researchers have discovered a series of vulnerabilities in the BIOSConnect feature of Dell SupportAssist that could allow attackers to remotely execute code on Dell machines. Dell SupportAssist is used to manage support functions, including…
-
"Zephyr RTOS Fixes Bluetooth Bugs That May Lead to Code Execution"
Security patches were released earlier this month for the Zephyr real-time operating system (RTOS) used for embedded devices. The patches fix multiple vulnerabilities that can lead to a denial-of-service (DoS) condition and remote code execution if…
-
"Attacks Against Container Infrastructures Increasing, Including Supply Chain Attack"The frequency and sophistication of attacks against the container infrastructure continues to grow. Using internet scanning tools such as Masscan, a new vulnerable container can be detected within a few hours. Aqua Security's Cloud Native Report shares…
-
SoS Musings #50 - Moving Automotive Cybersecurity into the Fast Lane
SoS Musings #50 - Moving Automotive Cybersecurity into the Fast Lane
-
Spotlight on Lablet Research #19 - Mixed Initiative and Collaborative Learning in Adversarial Environments
Spotlight on Lablet Research #19 - Mixed Initiative and Collaborative Learning in Adversarial Environments
-
-
Cybersecurity Snapshots #19 - Are Smart Home Gym Equipment and Health and Fitness Apps Secure?Cybersecurity Snapshots #19 - Are Smart Home Gym Equipment and Health and Fitness Apps Secure?
News