The OpenTitan project, backed by Google, is nearing the release of its first secure root-of-trust chips.
As part of its Ransomware Vulnerability Warning Pilot program, CISA has notified more than 100 organizations that they are running internet-exposed devices with flaws that are frequently targeted by ransomware actors, including 26 alerts related to the MOVEit Transfer flaw.
EarlyRAT serves as another example of the Lazarus Group APT’s ability to quickly build new malware to target organizations worldwide.
Researchers say that crypters previously attributed to the Trickbot/Conti syndicate are “fundamental” to tracking cybercrime factions.
A somewhat quiet ransomware group known as 8Base has increased its activity in the last month and has researchers wondering who is behind the scenes.
The Government Accountability Office found that various federal agencies don't have a comprehensive way to track cybercrime data, which it says is "leaving the country less prepared to combat cybercrime.”
Recent campaigns show cybercriminals haven't given up yet on cryptojacking, despite fluctuating cryptocurrency values and the shutdown of Coinhive.
Welcome back to Source Code, Decipher's weekly news wrap podcast with input from our sources.
Apple has released new versions of iOS to patch three zero days that have been exploited in targeted attacks.
VMware confirmed that the critical command injection flaw (CVE-2023-20887) is being exploited in the wild.
The China-based hacking group has targeted ministries of foreign affairs across the Americas with updated malware called Graphican.
The Department of Justice hopes that its new National Security Cyber Section will improve cybercriminal investigations with more dedicated resources, speed and organizational support.
The malware, which has been used in an espionage attack since 2022, includes a capability that specifically targets the client drive mapping feature within Remote Desktop Protocol.
Matt Johansen joins Dennis Fisher to discuss his path from infosec n00b to senior security roles at White Hat, Bank of America, Reddit and his new newsletter and podcast venture Vulnerable U.
Ruslan Magomedovich Astamirov allegedly worked as a LockBit affiliate and launched five ransomware attacks between 2020 and 2023.