Security News

New XM Cyber Research: 80% of Exposures from Misconfigurations, Less Than 1% from CVEs
2024-05-17 11:29

A new report from XM Cyber has found – among other insights - a dramatic gap between where most organizations focus their security efforts, and where the most serious threats actually reside. The...

BlackTech Targets Tech, Research, and Gov Sectors New 'Deuterbear' Tool
2024-04-19 13:44

Technology, research, and government sectors in the Asia-Pacific region have been targeted by a threat actor called BlackTech as part of a recent cyber attack wave. The intrusions pave the way for...

MobSF: Open-source security research platform for mobile apps
2024-03-14 05:30

The Mobile Security Framework is an open-source research platform for mobile application security, encompassing Android, iOS, and Windows Mobile. MobSF can be used for mobile app security assessment, penetration testing, malware analysis, and privacy evaluation.

ISC2 Research: Most Cybersecurity Professionals Expect AI to Impact Their Jobs
2024-02-22 14:35

Most cybersecurity professionals believe AI will significantly impact their jobs, according to a new survey by the International Information System Security Certification Consortium; with only 35% of the respondents having already witnessed AI's effects on their jobs. The impact is not necessarily a positive or negative impact, but rather an indicator that cybersecurity pros expect their jobs to change.

How Nation-State Actors Target Your Business: New Research Exposes Major SaaS Vulnerabilities
2024-02-15 11:30

With many of the highly publicized 2023 cyber attacks revolving around one or more SaaS applications, SaaS has become a cause for genuine concern in many boardroom discussions. More so than ever,...

Google Threat Analysis Group’s Spyware Research: How CSVs Target Devices and Applications
2024-02-14 18:39

Google is currently tracking more than 40 CSVs, most of which are highly technical with the ability to develop spyware and zero-day exploits to compromise their targets, particularly on Android and iOS devices. Read details about what CSVs target, how spyware is used, CSVs' harmful impact on individuals and society and how businesses can mitigate these cybersecurity threats.

Ukraine: Hack wiped 2 petabytes of data from Russian research center
2024-01-26 16:59

The Main Intelligence Directorate of Ukraine's Ministry of Defense claims that pro-Ukrainian hacktivists breached the Russian Center for Space Hydrometeorology, aka "Planeta", and wiped 2 petabytes of data. Planeta is a state research center using space satellite data and ground sources like radars and stations to provide information and accurate predictions about weather, climate, natural disasters, extreme phenomena, and volcanic monitoring.

North Korean Hackers Weaponize Research Lures to Deliver RokRAT Backdoor
2024-01-22 16:47

Media organizations and high-profile experts in North Korean affairs have been at the receiving end of a new campaign orchestrated by a threat actor known as ScarCruft in December 2023. "ScarCruft...

Cloud Atlas' Spear-Phishing Attacks Target Russian Agro and Research Companies
2023-12-25 07:47

The threat actor referred to as Cloud Atlas has been linked to a set of spear-phishing attacks on Russian enterprises. Targets included a Russian agro-industrial enterprise and a state-owned...

U.S. nuclear research lab data breach impacts 45,000 people
2023-12-14 17:59

The research lab says in breach notification letters filed with the Maine Attorney General's Office this week that the attackers exfiltrated the data of 45,047 current and former employees, as well as their dependents and spouses. "The event did not impact INL's own network, or other networks or databases used by employees, lab customers or other contractors. The breach only impacted the cloud-based Oracle HCM test environment that resides off-site."INL said.