Part 2 of 2: The data at rest edition

Claroty revealed that 89% of healthcare organizations use the top 1% of riskiest Internet-of-Medical-Things (IoMT) devices

Mac VPNs are privacy tools to enhance your online privacy and security. These are our top VPN recommendations for Mac users who want to hide their activities.

Microsoft's new sign-in screens push you to finally ditch passwords - here's how.

Artificial intelligence company OpenAI has announced a fivefold increase in the maximum bug bounty rewards for "exceptional and differentiated" critical security vulnerabilities from $20,000 to...

Google's trusty casting device has been around for over a decade, and while its days are numbered, it still does more than just stream your favorite shows.

An Android malware family previously observed targeting Indian military personnel has been linked to a new campaign likely aimed at users in Taiwan under the guise of chat apps. "PJobRAT can steal...

Interpol disrupts cybercrime ring in Africa, new credential stuffing service targets 140 sites, and EncryptHub exploits Windows MMC zero-day.

A newly discovered phishing-as-a-service (PhaaS) operation that researchers call Morphing Meerkat, has been using the DNS over HTTPS (DoH) protocol to evade detection. [...]

The bug fix comes days after Google fixed a similar vulnerability under attack in its Chrome browser.

The order says state and local governments should “own” addressing risks like cyberattacks. It’s a mismatch when a small town goes up against China, experts countered. The post Trump’s...

2025-03-24 • SYGNIA • Sygnia Team • win.chinachopper, win.regeorg Open article on Malpedia

New research from DNV identified that half of critical infrastructure organizations are not sure where their supply chain... The post DNV reports half of critical infrastructure firms lack supply...

2025-03-16 • SYGNIA • Sygnia Team Open article on Malpedia

Microsoft resolved an issue that caused the new Outlook email client to crash when users clicked a button designed to switch back to classic Outlook. [...]

Nozomi Networks Labs recently identified vulnerabilities in the Inaba Denki Sangyo’s CHOCO TEI WATCHER mini (IB-MCT001) camera that... The post Unpatched vulnerabilities in Japan’s CHOCO TEI...

Salvador Tech, a provider of market-first cyber-attack resilience and recovery solutions, announced that Nadir Izrael, co-founder and CTO... The post Armis’ Nadir Izrael joins Salvador Tech...

Defenders have observed CoffeeLoader, a new stealthy malware that evades security protection using advanced evasion techniques and takes advantage of Red Team methods to boost its effectiveness....

Expert speakers discussed the impact of reported cutbacks to CISA on the ability of local officials to protect against surging cyber-attacks on US election infrastructure

CERT Polska has received a report about 2 vulnerabilities (CVE-2024-11504 and CVE-2024-7407) found in Streamsoft Prestiż software.

The phishing campaign is highly sophisticated!

Cybersecurity researchers have discovered several cryptocurrency packages on the npm registry that have been hijacked to siphon sensitive information such as environment variables from compromised...

A PhaaS platform, dubbed 'Morphing Meerkat,' uses DNS MX records to spoof over 100 brands and steal credentials, according to Infoblox Threat Intel

Three security bypasses have been discovered in Ubuntu Linux's unprivileged user namespace restrictions, which could be enable a local attacker to exploit vulnerabilities in kernel components. [...]

Mozilla has released updates to address a critical security flaw impacting its Firefox browser for Windows, merely days after Google patched a similar flaw in Chrome that came under active...

A breach at Oracle Health impacts multiple US healthcare organizations and hospitals after a threat actor stole patient data from legacy servers. [...]

Cisco Talos is actively tracking an ongoing campaign, targeting users in Ukraine with malicious LNK files which run a PowerShell downloader since at least November 2024.

Security awareness training doesn’t have to be a snoozefest – games and stories can help instill ‘sticky’ habits that will kick in when a danger is near

The Tor Project announced the release of an emergency update for Tor Browser 13.5.14, specifically targeting users on Windows 7, 8, and 8.1. This update is part of the ongoing legacy channel...

Check out NIST’s comprehensive taxonomy of cyberattacks against AI systems, along with mitigation recommendations. Plus, organizations have another cryptographic algorithm for protecting data...