Only 3% of Open Source Software Bugs Are Actually Attackable, Researchers Say
A new study says 97% of open source vulnerabilities linked to software supply chain risks are not attackable — but is “attackability” the …
Researchers
Researchers Found that Adobe Acrobat Blocking Security Software Visibility into PDF Files
Adobe Acrobat is blocking security software from inspecting the PDF files it opens. The end result of the work is the users are at risk …
Researchers Uncover Ways to Break the Encryption of ‘MEGA’ Cloud Storage Service
A new piece of research from academics at ETH Zurich has identified a number of critical security issues in the MEGA cloud storage service …
Researchers Disclose 56 Vulnerabilities Impacting OT Devices from 10 Vendors
Nearly five dozen security vulnerabilities have been disclosed in devices from 10 operational technology (OT) vendors due to what …
Researchers disclose 56 vulnerabilities impacting thousands of OT devices
Forescout’s Vedere Labs disclosed OT:ICEFALL, 56 vulnerabilities affecting devices from 10 operational technology (OT) vendors. This is …
Cybersecurity Researchers Find Several Google Play Store Apps Stealing Users Data
A group of cybersecurity researchers from Dr. Web claims to have spotted a number of apps on the Google Play Store in May with built-in …
Researchers Detail PureCrypter Loader Cyber Criminals Using to Distribute Malware
Cybersecurity researchers have detailed the workings of a fully-featured malware loader dubbed PureCrypter that’s being purchased by cyber …
Researchers Disclose Rooting Backdoor in Mitel IP Phones for Businesses
Cybersecurity researchers have disclosed details of two medium-security flaws in Mitel 6800/6900 desk phones that, if successfully …
Researchers Block Two Million Extortion Emails Daily
Security researchers are warning users to be on the lookout for extortion scams after revealing they block millions of such emails each …
Researchers Detail How Cyber Criminals Targeting Cryptocurrency Users
Cybercriminals are impersonating popular crypto platforms such as Binance, Celo, and Trust Wallet with spoofed emails and fake login pages …
Researchers Disclose Critical Flaws in Industrial Access Control System from Carrier
As many as eight zero-day vulnerabilities have been disclosed in Carrier’s LenelS2 HID Mercury access control system that’s used widely in …
Researchers Warn of Spam Campaign Targeting Victims with SVCReady Malware
A new wave of phishing campaigns has been observed spreading a previously documented malware called SVCReady. “The malware is notable for …
Researchers Uncover Malware Controlling Thousands of Sites in Parrot TDS Network
The Parrot traffic direction system (TDS) that came to light earlier this year has had a larger impact than previously thought, according …
Zero-day vuln in Microsoft Office: ‘Follina’ will work even when macros are disabled
Infosec researchers have idenitied a zero-day code execution vulnerability in Microsoft’s ubiquitous Office software. Dubbed “Follina”, the …