A link-shortening service provides cyberattackers and scammers with .us top-level domains, making their phishing campaigns slightly less detectable. Infoblox researchers have dubbed the threat actor responsible for the operation "Prolific Puma." Prolific Puma has generated as many as 75,000 unique domain names in the past 18 months, evading regulations to provide criminals with .us URLs.

Researchers at the Massachusetts Institute of Technology (MIT) have developed a search engine called SecureLoop, capable of efficiently identifying optimal designs for deep neural network accelerators that preserve data security while improving performance. As computationally intensive Machine Learning (ML) applications, such as chatbots that perform real-time language translation, rise, device manufacturers often incorporate specialized hardware components to quickly move and process the enormous amounts of data demanded by these systems.

According to a new study from Aalto University, online games' privacy policies and practices have dark design patterns that may be deceptive, misleading, or coercive to users. The gaming industry is worth about $193 billion, with around three billion gaming enthusiasts worldwide. Although online gaming can improve well-being and facilitate social relationships, privacy and awareness problems have the potential to offset these benefits and cause actual harm to gamers.

A world-first illustrated children's book aimed at teaching children ages 4 to 7 about cybersecurity and how to protect their information online was released at Abertay cyberQuarter by Education Scotland in collaboration with the Scottish Government. The book titled "The Bongles and The Crafty Crows" guides young children on creating passwords and passcodes using three random words, enabling them to explore, play, and communicate using digital technologies while making their online information more secure.

Jongeun You, an assistant professor of political science at Northern Michigan University, brings further attention to the vulnerability of the US water sector to cyberattacks. According to You, water and wastewater operators typically rely on Industrial Control System (ICS) devices created decades ago, and their Operational Technology (OT)/Information Technology (IT) systems are often found to be outdated. In addition, the US has over 150,000 public water systems, resulting in a structure that is difficult to protect because of its fragmentation.

Alexis Musaelyan-Blackmon won first place in the "Powering Diverse and Inclusive Communities of Belonging" category of the third annual Women Who Empower Innovator Awards presented by Northeastern University. With an interest in harnessing data, Artificial Intelligence (AI), and computational biology, Musaelyan-Blackmon came up with "Dephend," a play on the words "phishing" and "defend," to combat ever-evolving security threats. Dephend is a cloud-based Software-as-a-Service (SaaS) security platform that, once deployed, provides real-time insights into cyber threats.

Cybersecurity experts at RMIT University warn that the popular shopping app TEMU may contribute to unsafe data collection practices. TEMU has been at the center of many cybersecurity and consumer data discussions due to its rising popularity. According to Dr. Arathi Arakala, lecturer in mathematics at RMIT University, TEMU's privacy and cookie policy states that the type of data it gathers includes essential user data for its service, such as address, phone number, and payment information.

The lab of Dinesh Bharadia, a member of the University of California, San Diego Qualcomm Institute (QI) and professor in the Jacobs School of Engineering's Department of Electrical and Computer Engineering, has developed a novel device to address the challenge of increasing public access to the wireless network. The prototype technology filters out interference from other radio signals while sweeping underutilized spectrum frequency bands for high-traffic periods. High signal fidelity ensures users can rely on a secure connection, with cyberattacks being identified in real-time.

A new cyberattack campaign has been distributing a novel malware loader called GHOSTPULSE via fake MSIX Windows app package files for popular software such as Google Chrome, Microsoft Edge, Brave, Grammarly, and Cisco Webex. According to Joe Desimone, researcher at Elastic Security Labs, MSIX is a Windows app package format that developers can use to package, distribute, and install their applications for Windows users.

Multiple malicious Google Play Android apps downloaded over two million times push intrusive advertisements to users while hiding their presence on infected devices. Dr. Web's analysts identified trojans associated with the 'FakeApp,' 'Joker,' and 'HiddenAds' malware families on Google Play. According to Dr. Web, once these apps are installed on a victim's device, they hide by replacing their icons with those of Google Chrome or by using a transparent icon image to create empty space in the app drawer.