A security researcher has explained how a weakness in the Amazon Web Services (AWS) API Gateway could be exploited via a HTTP header smuggling attack. Daniel...
A survey of 100 North American security executives found that 48% of business employees and leaders have been approached by cybercriminals to assist a ransomware attack....
Costco is offering victims 12 months of credit monitoring, a $1 million insurance reimbursement policy and ID theft recovery services. Costco has sent out breach notification letters to...
Kaspersky has published its DDoS attacks Q3 2021 report. This article will take through the latest DDoS trends and attacks and the implications posed by them....
A new attack technique called ‘HTML smuggling’, which spreads malware via email, is increasingly targeting banking organizations, Microsoft has claimed. The attack vector, which surfaced earlier...
Microsoft has seen a surge in malware campaigns using HTML smuggling to distribute banking malware and remote access trojans (RAT). While HTML smuggling is not a...
The maintainers of GoCD, a widely used, open source tool that automates the continuous delivery (CD) of software, have addressed three vulnerabilities that, if chained, could lead to...
An open source toolkit designed to detect and thwart dependency confusion attacks was unveiled at Black Hat Europe 2021 yesterday. Developed by DevSecOps vendor Apiiro, Dependency Combobulator can be embedded...
New legislation introduced this week by US lawmakers aims to set ransomware attack response “rules of road” for US financial institutions. The Ransomware and Financial Stability...
The U.S. Department of Justice (DOJ) arrested and charged a Ukrainian national for their involvement in the ransomware attack against IT company Kaseya in July. According...