“BadAlloc” is the name assigned to the family of vulnerabilities discovered in embedded Internet of Things (IoT) and Operational Technology (OT) operating systems and software to describe a class of memory overflow vulnerabilities. Keep Reading
Eighty percent of U.S. adults have had all of their personal data stolen thanks to China's "persistent and unending resources." Keep Reading
In a special notice published Aug. 10, the agency seeks input on its nascent effort to improve industry compliance with existing and future cyber-hygiene requirements. Keep Reading
PetitPotam is a tool to force Windows hosts to authenticate to other machines by using the Encrypting File System Remote (EFSRPC) EfsRpcOpenFileRaw and other methods. Keep Reading
The company questioned businesses that use the Microsoft 365 platform looking to understand how they handle email security in an increasingly decentralized working environment. Keep Reading
This vulnerability allows an unauthenticated user access to sensitive information and allows for the alteration of the router configuration. Keep Reading
The study found that children are learning best practices, such as memorizing passwords, but are demonstrating a gap between their knowledge of good password practices and their behavior. Keep Reading
Evanina will provide his insight into the risks of intelligence collection and attack by foreign adversaries, in addition to his understanding of insider threats, personnel security, and supply chain threats. Keep Reading
The objective of this year’s Challenge is to identify, describe, demonstrate, and defend against a modern cybersecurity threat. Keep Reading
Jordan created a Twitter account on August 8, 2021 and made a total of 186 tweets within a three hour period. Two of these tweets stated, “@Disney or we will blow up all of your execs houses with C4” and “@Disney I will toss a hand grenade threw their loft window.” Keep Reading
A sophisticated fraud scheme using compromised emails and advance-payment fraud has been uncovered by authorities in Romania, the Netherlands and Ireland as part of an action coordinated by Europol. Keep Reading
The risk of online jihadist propaganda being translated into offline violence remains high, as propaganda continues to call for lone actor attacks by individuals who have no physical connections to specific groups. Keep Reading
The program welcomes startups at all stages of maturity; from those developing a Minimum Viable Product (MVP), to those with established cybersecurity solutions looking to expand into new markets and pilot technology. Keep Reading
The cybercriminals exploited a vulnerability in Poly Network, a platform that looks to connect different blockchains so that they can work together. Keep Reading
One development is the recent release of leaked Iranian documents detailing research into how a cyber-attack could be used to target critical infrastructure, including MTS entities. Keep Reading
Easterly served more than 20 years in the Army and was responsible for standing up the Army’s first cyber battalion. She was also instrumental in the creation of U.S. Cyber Command. Keep Reading
Alarming trends make it imperative for companies to treat cybersecurity with focus, investment, people, and technologies. Keep Reading
The researchers examined online platforms such as Reddit and 4chan, where anonymous extremist rants and thoughts can be found easily. Domestic terrorists in California and New Zealand posted manifestos on these platforms before carrying out mass shootings. Keep Reading
The IWTSD identifies and develops capabilities for irregular warfare for numerous adversaries for the Department of Defense (DoD), Special Forces and Department of Homeland Security (DHS). Keep Reading
Cybersecurity is not just about preventing loss of data but preventing loss of life or damage at tall buildings. Keep Reading