New Android Trojan ‘SoumniBot’ Evades Detection with Clever Tricks

A new Android trojan called SoumniBot has been detected in the wild targeting users in South Korea...

How to Conduct Advanced Static Analysis in a Malware Sandbox

Sandboxes are synonymous with dynamic malware analysis. They help to execute malicious files in a...

Global Police Operation Disrupts ‘LabHost’ Phishing Service, Over 30 Arrested Worldwide

As many as 37 individuals have been arrested as part of an international crackdown on...

Hackers Exploit OpenMetadata Flaws to Mine Crypto on Kubernetes

Threat actors are actively exploiting critical vulnerabilities in OpenMetadata to gain unauthorized access to Kubernetes...

Malicious Google Ads Pushing Fake IP Scanner Software with Hidden Backdoor

A new Google malvertising campaign is leveraging a cluster of domains mimicking a legitimate IP...

Russian APT Deploys New ‘Kapeka’ Backdoor in Eastern European Attacks

A previously undocumented “flexible” backdoor called Kapeka has been “sporadically” observed in cyber attacks targeting Eastern Europe,...

GenAI: A New Headache for SaaS Security Teams

The introduction of Open AI’s ChatGPT was a defining moment for the software industry, touching...

Critical Atlassian Flaw Exploited to Deploy Linux Variant of Cerber Ransomware

Threat actors are exploiting unpatched Atlassian servers to deploy a Linux variant of Cerber (aka...

Hackers Exploit Fortinet Flaw, Deploy ScreenConnect, Metasploit in New Campaign

Cybersecurity researchers have discovered a new campaign that’s exploiting a recently disclosed security flaw in...

Watch all the plenaries from CYBERUK 2024 live, and for free

Key talks from the UK government’s flagship cyber security event will be livestreamed from Birmingham’s...

Cisco Warns of Global Surge in Brute-Force Attacks Targeting VPN and SSH Services

Cisco is warning about a global surge in brute-force attacks targeting various devices, including Virtual...

OpenJS Foundation Targeted in Potential JavaScript Project Takeover Attempt

Security researchers have uncovered a “credible” takeover attempt targeting the OpenJS Foundation in a manner...

TA558 Hackers Weaponize Images for Wide-Scale Malware Attacks

The threat actor tracked as TA558 has been observed leveraging steganography as an obfuscation technique to deliver...

AWS, Google, and Azure CLI Tools Could Leak Credentials in Build Logs

New cybersecurity research has found that command-line interface (CLI) tools from Amazon Web Services (AWS)...

Widely-Used PuTTY SSH Client Found Vulnerable to Key Recovery Attack

The maintainers of the PuTTY Secure Shell (SSH) and Telnet client are alerting users of a critical...

Identity in the Shadows: Shedding Light on Cybersecurity’s Unseen Threats

In today’s rapidly evolving digital landscape, organizations face an increasingly complex array of cybersecurity threats....

FTC Fines Mental Health Startup Cerebral $7 Million for Major Privacy Violations

The U.S. Federal Trade Commission (FTC) has ordered mental telehealth company Cerebral from using or...

Hive RAT Creators and $3.5M Cryptojacking Mastermind Arrested in Global Crackdown

Two individuals have been arrested in Australia and the U.S. in connection with an alleged...

Responding to a cyber incident – a guide for CEOs

Guidance to help CEOs in public and private sector organisations manage a cyber incident....

Interactive administration in the cloud: managing the risks

Tips to help you secure and reduce interactive access to your cloud infrastructure....

Applicant’s Webinar: 2024 NICE RAMPS Funding Opportunity

The presentations slides are available here. Speakers: Rodney Petersen Director NICE Danielle Santos Manager of...

The 35th Quest for Excellence® Conference

April 7–10, 2024 Gaylord National Harbor | #BaldrigeQuest COME. LEARN. NETWORK. ENGAGE Join us at...

NIST Awards $3.6 Million for Community-Based Cybersecurity Workforce Development

The grants of roughly $200,000 each will go to 18 education and community organizations that...

A Beginner’s Take on Social Engineering – Part 1

I’ll be honest, I never expected to see myself here… I’ve looked for well over...

NIST Begins Cybersecurity Project for Water and Wastewater Operations

NIST researcher CheeYee Tang, with MITRE staff, have started a project to address the cybersecurity...

NIST Researchers Give Webinar on Manufacturing Cybersecurity Project to Manufacturing Sector Community of Interest

NIST researchers Timothy Zimmerman, Michael Pease, and Michael Powell, with MITRE staff, hosted a webinar...