Research Archives

Fortinet office in Burnaby, BC, Canada, July 7, 2023. (Getty Images)

Fortinet warns of active campaign exploiting bug in FortiManager products

At least 50 organizations have been hit by the campaign, Fortinet and Mandiant say, and federal agencies are on the hook to patch.

1 day ago By Christian Vasquez

Maintenance, repair, under construction in computer system from virus or ransomware concept. Close up yellow triangle emergency warning sign on keyboard computer background with copy space. (Getty Images)

Researchers out new Qilin ransomware-as-a-service variant

The Qilin ransomware operation first emerged in July 2022 after rebranding a previous variant known as Agenda and rewriting the malware in Rust.

1 day ago By Christian Vasquez

PARIS, FRANCE – JUNE 04: In this photo illustration the GitHub logo is seen on the screen of an iPhone in front of a computer screen showing a Microsoft logo on June 04, 2018 in Paris, France. (Photo Illustration by Chesnot/Getty Images)

GitHub patches critical vulnerability in its Enterprise Servers

The “severe” flaw could allow attackers full access to instances.

Oct 16, 2024 By Christian Vasquez

LONDON,ENGLAND – MARCH 21: (Editors note: The email address has been pixelated) In this photo illustration a spam ‘Phishing’ email is displayed on a laptop screen on March 21,2022 in London,England. (Photo by Peter Dazeley/Getty Images)

Here’s how attackers are getting around phishing defenses

Data from Egress looks at how hackers are successfully evading email security filters.

Oct 16, 2024 By Christian Vasquez

Cyber, internet security and privacy concept. (Getty Images)

Organizations can substantially lower vulnerabilities with secure-by-design practices, report finds

Ex-National Cyber Director Inglis says “quantitative data” in Secure Code Warrior’s report shows the importance of the cybersecurity practice.

Oct 15, 2024 By Christian Vasquez

14,000 medical devices are online, unsecured and vulnerable

Censys cybersecurity researchers find medical devices, login portals, and health records floating online.

Oct 10, 2024 By Christian Vasquez

Oil pipeline with valves in large oil refinery. (Getty Images)

Automatic tank gauge vendors alerted of software vulnerabilities in their products

If exploited, the vulnerabilities could give hackers full administrative access to critical networks found in the management systems for large fuel storage.

Sep 24, 2024 By Christian Vasquez

The inspiration for the new ransomware’s name. (Photo by Scott Olson/Getty Images)

New ransomware variant has BlackCat-like similarities, report says

The new malware identified by Morphisec is named after an old internet mystery: Cicada3301.

Sep 3, 2024 By Christian Vasquez

A picture taken on September 21, 2016 shows a statue donated by Google during its inauguration in Montelimar, as Google decided to launch a new version of the android operating system. (JEFF PACHOUD/AFP via Getty Images)

Google to wind down app store bug bounty

The tech giant says it is receiving fewer vulnerabilities and that security improvements have resulted in a more secure Android ecosystem.

Aug 20, 2024 By AJ Vicens

The Iranian national flag is seen outside the International Atomic Energy Agency (IAEA) headquarters during the agency’s Board of Governors meeting in Vienna on March 1, 2021. (Photo by JOE KLAMAR/AFP via Getty Images)

Iran increases phishing attempts on U.S., Israeli targets

APT42 targeted the Biden and Trump presidential campaigns from May to June, Google researchers found.

Aug 14, 2024 By Christian Vasquez