Preparations are underway in Texas to introduce mandatory annual cybersecurity training for nearly all government employees. The Lone Star State passed a House bill to introduce the cyber-safety training into law on June 14 of this year. As if to

Very few companies are securing the majority of their cloud-native apps with DevSecOps practices, according to new research. According to findings from ESG and Data Theorem, only 8% of companies are securing 75% or more of their cloud-native applications with

A joint research from Intezer and Check Point Research shows connections between nearly 2,000 malware samples developed by Russian APT groups. A joint research from Intezer and Check Point Research shed light on Russian hacking ecosystem and reveals connections between

Security researchers have spotted a new tactic being trialed by Magecart hackers: targeting commercial grade routers to skim large volumes of card details. Magecart is the generic name given to a number of groups using JavaScript code to covertly steal

Chinese APT hackers launching a FakeNarrator malware to attack technology companies using windows computers and implant modified version of open-source PcShare backdoor. Threat actors loaded this open-source software in victims machine with the help of legitimate NVIDIA application and also

Another unprotected Elasticsearch database has been found online, leaking the personal data of tens of thousands of dating app users. Researcher Avishai Efrat of VPN comparison firm WizCase was able to access a database of around 77,000 users of Heyyo,

The Bing Redirect Virus is a very commonly encountered browser annoyance that belongs to the Browser Hijacker category. It is a small piece of software similar to a browser extension, which makes changes in the user’s browser. The most notable

DoorDash announced a data breach that impacts 4.9 million consumers, Dashers, and merchants who signed up with the platform on or before April 5, 2018. The company has learned an unusual activity earlier this month, they have launched an investigation

Security expert Troy Mursch of Bad Packets reported that a botnet is exploiting the recently disclosed vBulletin exploit to block other attackers from also using it. The security expert Troy Mursch observed a botnet that it utilizing the recently disclosed

An APT campaign targeting US utilities firms with a remote access trojan (RAT) has now hit at least 17 firms, according to a new report from Proofpoint. The security vendor first spotted phishing emails sent to three utilities providers in

Microsoft has issued an emergency out-of-band patch for a critical remote code execution vulnerability in Internet Explorer. CVE-2019-1367 is a bug in the browser’s scripting engine which affects how it handles objects in memory. Specifically, it could corrupt memory so

Cyberattacks have always surprised security experts because they are sneaky and come in different forms. Distributed Denial of Service is a process of driving a huge amount of traffic or load to a targeted device or a website using multiple

Security experts at Proofpoint observed a new wave of phishing attacks aimed at US Utilities in an attempt to deliver the LookBack RAT. Security experts at Proofpoint have discovered a new series of phishing attacks targeting entities US utilities in

An anonymous hacker publicly disclosed an unpatched vBulletin forum software pre-auth RCE Zero-day Exploit. vBulletin is one of the most popular and widely used forum software which is written in PHP, and the new version of vBulletin software release just

Almost half of employees who switch roles within a company retain unnecessary network access rights, according to the results of a new survey by IT software company Ivanti. The online survey questioned 400 people, of whom 70% were IT professionals,

Google has removed 29 malicious adware apps that have more than 10 million downloads from the Google play store. These malicious apps are listed as camera filter, makeup apps, and apps used to create multiple accounts. Among other apps “Multi