How EU lawmakers can make mandatory vulnerability disclosure responsible
There is a standard playbook and best practice for when an organization discovers or is notified about a software vulnerability: The organization works quickly to fix the problem and, once a fix is available, discloses that vulnerability for the bene.....»»
Vulnerability allows Yubico security keys to be cloned
Researchers have unearthed a cryptographic vulnerability in popular Yubico (FIDO) hardware security keys and modules that may allow attackers to clone the devices. But the news is not as catastrophic as it may seem at first glance. “The attacke.....»»
Beef industry can reduce emissions by up to 30%, says new research
Greenhouse gases resulting from human activity have been the largest driver of climate change since the mid-20th century—especially from agriculture. The U.S. beef industry alone is responsible for 3.3% of the nation's total emissions, and even wit.....»»
Poor quality of employment is responsible for UK workers" reliance on foodbanks, study shows
University of Liverpool researchers have published the first-ever peer-reviewed study of workers using foodbanks in the U.K. The study, published in the Journal of Poverty and Social Justice, found that the primary reason for workers turning to emerg.....»»
Researchers identify genes for low glycemic index and high protein in rice
A team of researchers at the International Rice Research Institute (IRRI) has identified genes and markers responsible for low glycemic index (GI) and high protein content in rice, using genetics and artificial intelligence classification methods......»»
Study reveals key strategies to combat urban heat vulnerability
A QUT study analyzing five decades of research and thousands of studies has identified five critical areas needed to tackle urban heat vulnerability (UHV), a growing issue impacting millions in increasingly heat-prone cities......»»
Public perceptions on the use of gene tech for environmental problems
Addressing public concerns about the suitability and safety of new innovations is crucial to the responsible use of genetic technologies for environmental problems, according to a new report on New Zealanders' perceptions commissioned by BioHeritage.....»»
Tuberculosis under the sea: A marine sponge microbe provides insights into the bacterium"s evolution
The surprising discovery of a bacterium in a marine sponge from the Great Barrier Reef with striking similarity to Mycobacterium tuberculosis, the pathogen responsible for tuberculosis (TB), could unlock and inform future TB research and treatment st.....»»
Scientists unlock the secrets of how a key protein converts DNA into RNA
Researchers at the Department of Energy's SLAC National Accelerator Laboratory have uncovered new insights into the fundamental mechanisms of RNA polymerase II (Pol II), the protein responsible for transcribing DNA into RNA. Their study shows how the.....»»
Scientists discover how starfish get "legless"
Researchers at Queen Mary University of London have made a discovery about how starfish manage to survive predatory attacks by shedding their own limbs. The team has identified a neurohormone responsible for triggering this remarkable feat of self-pr.....»»
Avian flu has infected dairy cows in more than a dozen states—a microbiologist explains how the virus is spreading
The current strain of avian flu, H5N1, is responsible for the culling of millions of domestic birds and has sickened more than a dozen farmworkers in 2024, most recently in Colorado......»»
RISCPoint RADAR provides real-time vulnerability detection across multiple attack surfaces
RISCPoint Advisory Group launched RADAR, an all-in-one cybersecurity platform. Combining continuous threat discovery with expert-led Penetration Testing as a Service (PTaaS), RADAR represents a significant leap forward in proactive security and risk.....»»
Third-party risk management is under the spotlight
In the aftermath of the CrowdStrike IT outage, new research has uncovered a critical vulnerability within financial institutions regarding supply chain resilience. The outage has demonstrated the need for greater digital supply chain resilience, part.....»»
Unpatchable 0-day in surveillance cam is being exploited to install Mirai
Vulnerability is easy to exploit and allows attackers to remotely execute commands. Enlarge (credit: Getty Images) Malicious hackers are exploiting a critical vulnerability in a widely used security camera to spread Mira.....»»
Researchers study carbon capture in Upper Newport Bay salt marshes
Despite covering just 2% of the ocean, coastal wetlands—such as tidal salt marshes, mangrove forests and seagrass beds—are responsible for storing nearly half of all carbon found in ocean sediment. These "blue carbon" ecosystems naturally absorb.....»»
Dragos Platform updates streamline OT threat and vulnerability workflows
Dragos announced the latest release of the Dragos Platform, an OT network visibility and cybersecurity platform. The updates provide industrial and critical infrastructure organizations with even deeper and enriched visibility into all assets in thei.....»»
Critical Fortra FileCatalyst Workflow vulnerability patched (CVE-2024-6633)
Organizations using Fortra’s FileCatalyst Workflow are urged to upgrade their instances, so that attackers can’t access an internal HSQL database by exploiting known static credentials (CVE-2024-6633). “Once logged in to the HSQLDB,.....»»
APT group exploits WPS Office for Windows RCE vulnerability (CVE-2024-7262)
ESET researchers discovered a remote code execution vulnerability in WPS Office for Windows (CVE-2024-7262). APT-C-60, a South Korea-aligned cyberespionage group, was exploiting it to target East Asian countries. When examining the root cause, ESET d.....»»
Versa Director zero-day exploited to compromise ISPs, MSPs (CVE-2024-39717)
Advanced, persistent attackers have exploited a zero-day vulnerability (CVE-2024-39717) in Versa Director to compromise US-based managed service providers with a custom-made web shell dubbed VersaMem by the researchers. The malware harvests credentia.....»»
SonicWall patches critical flaw affecting its firewalls (CVE-2024-40766)
SonicWall has patched a critical vulnerability (CVE-2024-40766) in its next-gen firewalls that could allow remote attackers unauthorized access to resources and, in specific conditions, to crash the appliances. About CVE-2024-40766 CVE-2024-40766 is.....»»
Communicating consensus strengthens beliefs about climate change, finds 27-country study
Climate scientists have long agreed that humans are largely responsible for climate change. However, people often do not realize how many scientists share this view. A new 27-country study published in the journal Nature Human Behaviour finds that co.....»»