Researchers with France's national cybersecurity agency ANSSI have identified seven new flaws that affect devices supporting Bluetooth Core and Mesh specifications. These specifications define technical and policy requirements for devices that operate…

According to a new Splunk report, some 84% of global organizations have suffered a severe security incident over the past two years, and a majority are expecting another SolarWinds-style supply chain attack.  Researchers interviewed 535 security…

The United States Department of Homeland Security (DHS) is to issue its first-ever set of cybersecurity regulations for pipelines.  The news comes in the wake of a recent ransomware attack on the Colonial Pipeline that knocked operational systems…

Researchers at Ruhr-University Bochum (RUB) have discovered a security issue in the certification signatures of PDF documents. This form of signed PDF files can be used in the conclusion of contracts. The certification signature allows certain changes to…

The FBI has released an alert about Conti ransomware following the identification of at least 16 Conti ransomware attacks against US healthcare and first responder networks, including law enforcement agencies, emergency medical services, municipalities,…

​Pub Crawl summarizes, by hard problems, sets of publications that have been peer reviewed and presented at SoS conferences or referenced in current work. The topics are chosen for their usefulness for current researchers.

Spotlight on Lablet Research #18 - Project: Scalable Privacy Analysis  

Cybersecurity Snapshots #18 - Oil And Gas Companies Need to Take Cybersecurity More Seriously  

In late March, CNA Financial was hit by a variant of the Evil Corp-authored Hades ransomware called Phoenix Locker.  They agreed to the ransom demand and paid the adversaries $40 million after its IT systems were locked down and threat actors stole…

A team of researchers at the University of Michigan has developed a new secure computer processor called Morpheus that can thwart attacks from hackers by rapidly and continuously randomizing elements of code and data. The randomization of such elements…

India's national airline Air India released a statement to passengers, revealing that it had experienced a data breach in February this year. The data breach has led to the exposure of data belonging to 4.5 million Air India passengers worldwide. Unknown…

Irish authorities are testing a decrypt tool to recover health data following the recent ransomware attack on the Health Service Executive (HSE) of Ireland, which led to disruption of healthcare and social services in hospitals and community centers…