A new study from a team of researchers from Germany's Ruhr-Universität Bochum, North Carolina State University, and Google suggests that Alexa Skills often have security weaknesses and data protection problems that attackers can exploit to perform…

A canary trap in the performance of espionage is the spread of multiple versions of false documents to hide a secret. The canary trap technique can be used to detect information leaks or create distractions that conceal valuable information. A team of…

Researchers at an Israeli security firm Intezer have found that new malware written in the Go programming language has spiked by 2000% over the past four years.  Go programming language is sometimes referred to as Golang and was first used for…

The US Defense Department's cyber workforce is responsible for defending nearly every system that the government agency uses to safeguard national security. John Marx, the acting principal director for cyber modernization in the office of the…

A hacking group called Hotarus Corp claims to have stolen internal data from Ecuador's Ministry of Finance and Banco Pichincha, the largest private bank in Ecuador. The ransomware gang used a PHP-based ransomware strain called Ronggolawe, also known as…

Researchers from the cybersecurity company Kaspersky have found that Russia, Brazil, and the United States of America were most affected by stalkerware last year.  The researchers found that 53,870 Kaspersky users were affected globally by malicious…

The cybersecurity company Coveware released a report revealing that nearly half of the ransomware attacks that it had tracked in the third quarter included threats to leak unencrypted data. However, several of the gangs behind these attacks did not honor…

According to a new report released by the mobile security firm Lookout, malicious hackers targeting devices belonging to government workers increasingly focused on stealing victims' login credentials instead of delivering malware in 2020. This shift in…

Researchers at the cybersecurity firm Malwarebytes have discovered a new Advanced Persistent Threat (APT) group dubbed LazyScripter. The hacking group targets airlines that use the BSPLink financial settlement software made by the International Air…

Researchers at Check Point discovered that a new organization became a ransomware victim every 10 seconds in 2020, with remote workers experiencing a sharp uptick in threats.  The researchers claim that double extortion ransomware, in particular was…

Every second, 127 new IoT devices are connected to the web, and experts predict that by 2025, that figure will equate to more than 75 billion connected devices overall.  IoT devices are often riddled with security vulnerabilities impacting security…

SoS Musings #46 - The Battle Against Fileless Malware Attacks Continues