Template injection attacks are a form of living off the land (LotL) attack used by adversaries to inject a malicious URL in a document to render a malicious template hosted on a local or remote machine.

A survey from Daon shows 92% of consumers believe cybersecurity threats will continue to outpace cybersecurity technology, with 91% willing to take extra security measures to prove their identity on an ongoing basis to protect their assets.

Google Cloud team identified 34 different hacked releases of Cobalt Strike in the wild. Researchers have found the versions of Cobalt Strike JAR files starting with 1.44 (circa 2012) up to the latest version, 4.7.2.

The New Zealand government’s cyber security agency has recorded a “massive” jump in online fraud, with scammers draining nearly $9 million from unsuspecting victims in just three months.

With the current financial and economic pressures, cutting or underfunding DR planning is a tempting prospect for many organizations. That impulse could be costly in the long term.

In a recent report, Forrester analysts warned of a looming major security breach at a large enterprise in 2023 rooted in business users using low-code/no-code (LCNC) solutions.

Since the commencement of the EU-backed Maritime Unmanned Navigation through Intelligence in Networks (MUNIN) project, Maritime Autonomous Surface Ship (MASS) technologies, infrastructures, and the overall ecosystem have developed rapidly.

Phishing attempts targeting victims in the Middle East increased 100 percent last month in the lead-up to the FIFA World Cup 2022 in Qatar, according to security shop Trellix.

Research from a CoreView study reveals that many common security procedures are not being followed 100% of the time. This leaves gaping holes in most organizations’ security defenses.

The US Government Accountability Office (GAO) has warned that the time to act on securing the US's offshore oil and natural gas installations is now because they are under "increasing" and "significant risk" of cyberattack.