U.S CISA recently noticed that hackers using Phishing Emails to deploy KONNNI malware with the help of weaponized Microsoft word documents. The KONNI RAT was initially found in May 2017 by researchers at the Cisco Talos team after it was

A social media data broker has exposed the public-facing profiles of 235 million users via a misconfigured online database, according to researchers. Comparitech teamed up with Bob Diachenko to uncover three identical copies of the data on August 1, left

Users of Google’s cross-platform web browser Chrome are to be shown a warning when they start to complete a form that may not be secure. Beginning in M86, Chrome will warn users when they try to complete forms on secure

New research has found that more than 70% of industrial control system (ICS) vulnerabilities disclosed in the first half of 2020 can be exploited remotely. The discovery was unveiled in the inaugural “Biannual ICS Risk & Vulnerability Report,” released today

Fortinet and IBM have joined forces to provide a new training program that aims to bridge the skills gap in the cybersecurity industry. In an announcement made earlier today, Fortinet said that it would be integrating its Network Security Expert

The majority of airline companies are potentially leaving their customers vulnerable to email fraud, such as phishing, according to a new analysis by Proofpoint. It found that 61% of member airlines belonging to the International Air Transport Association (IATA) do

More than 10,000 email, SMS, social media and phone scams exploiting the COVID-19 pandemic are being investigated by Her Majesty’s Revenue and Customs (HMRC) in the UK. The official figures, published following a Freedom of Information (FOI) request by the

Almost two-fifths (39%) of British business decision makers have sacked employees because they breached corporate security policy during the pandemic, according to new data from Centrify. The IAM specialist polled 200 UK respondents to find out more about how COVID-19

Hundreds of thousands of ISO certifications are in danger of lapsing because auditors haven’t been able to visit organizations’ premises during the pandemic, according to InfoSaaS. The international standards at risk of suspension include ISO 27001, which covers rigorous best

British-American cruise operator Carnival has suffered a ransomware attack in which guest and employee data was accessed, it has revealed in a regulatory filing. The Miami-headquartered travel giant — which operates big-name brands including Cunard, P&O, AIDA and Princess —

Parrot security has announced the release of Parrot Security OS 4.10, which makes the distribution more reliable and more secure. The Parrot Security Operating System is a Penetration Testing & Forensics Distro dedicated to Ethical Hackers & Cyber Security Professionals.

Cloud Security Alliance and ISACA are joining forces to bring a Certificate of Cloud Auditing Knowledge (CCAK) to the market. The strategic partnership of the global technology association and the world’s leading organization dedicated to defining standards, certifications, and best

A consumer privacy campaign group has filed a lawsuit against American companies Salesforce and Oracle over an alleged breach of the EU’s General Data Protection Regulation laws. The Privacy Collective claims that the companies collect users’ personal data without proactive

The content management system, Concrete5 CMS, contains a major vulnerability which has now been addressed in an updated version, according to an analysis published today by Edgescan. Edgescan senior information security consultant, Guram Javakhishvili, revealed that Concrete5 has a Remote

Reports of data breaches are down by 52% year-on-year in the first half of 2020. According to research by Risk Based Security, whilst the number of reported data breaches are down, the number of records exposed is more than four-times

Vodafone has announced the expansion of its business security services to include protection for business customers’ laptops and desktops. The telecoms giant is teaming with Trend Micro, adding the security vendor’s Worry-Free detection service to its security offering. This is