State-sponsored actors are deploying the unique malware--which targets specific files and leaves no ransomware note--in ongoing attacks. [...]

A radio control system for drones is vulnerable to remote takeover, thanks to a weakness in the mechanism that binds transmitter and receiver. [...]

A developer appears to have divulged credentials to a police database on a popular developer forum, leading to a breach and subsequent bid to sell 23 terabytes of personal data on the dark web. [...]

Iran's steel manufacturing industry is victim to ongoing cyberattacks that previously impacted the country's rail system. [...]

The heap buffer overflow issue in the browser’s WebRTC engine could allow attackers to execute arbitrary code. [...]

Devices from Cisco, Netgear and others at risk from the multi-stage malware, which has been active since April 2020 and shows the work of a sophisticated threat actor. [...]

Oliver Tavakoli, CTO at Vectra AI, gives us hope that surviving a ransomware attack is possible, so long as we apply preparation and intentionality to our defense posture. [...]

Hackers with Amazon users’ authentication tokens could’ve stolen or encrypted personal photos and documents. [...]

Attacks against U.S. companies spike in Q1 2022 with patchable and preventable external vulnerabilities responsible for bulk of attacks. [...]

Shrav Mehta, CEO, Secureframe, outlines the top six bad habits security teams need to break to prevent costly breaches, ransomware attacks and prevent phishing-based endpoint attacks. [...]

Researchers warn threat actors are using a novel remote code execution exploit to gain initial access to victim’s environments. [...]

Cyber collective Killnet claims it won’t let up until the Baltic country opens trade routes to and from the Russian exclave of Kaliningrad. [...]

CISA warns that threat actors are ramping up attacks against unpatched Log4Shell vulnerability in VMware servers. [...]

The company is warning victims in Italy and Kazakhstan that they have been targeted by the malware from Italian firm RCS Labs. [...]

The APT is pairing a known Microsoft flaw with a malicious document to load malware that nabs credentials from Chrome, Firefox and Edge browsers. [...]

Joseph Carson, Chief Security Scientist and Advisory CISO at Delinea, explores why gamified platforms and hacking esports are the future. [...]

Culture of ‘insecure-by-design’ security is cited in discovery of bug-riddled operational technology devices. [...]

The threat actor targets institutions and companies in Europe and Asia. [...]

Traditional vulnerability management programs are outdated, with little to no innovation in the last two decades. Today's dynamic IT environment demands an advanced vulnerability management program to deal with the complex attack surface and curb security risks. [...]

Researchers have discovered that a Kazakhstan government entity deployed sophisticated Italian spyware within its borders. [...]

A reported a "potentially dangerous piece of functionality" allows an attacker to launch an attack on cloud infrastructure and ransom files stored in SharePoint and OneDrive. [...]

Attackers are targeting a number of key vertical markets in the U.S. with the active campaign, which impersonates the organization and Microsoft to lift Office365 and Outlook log-in details. [...]

Evidence suggests that a just-discovered APT has been active since 2013. [...]

Analysts have uncovered an Iran-linked APT sending malicious emails to top Israeli government officials. [...]

Ryan Witt, Proofpoint's Healthcare Cybersecurity Leader, examines the impact of ransomware on patient care. [...]