The National Security Agency (NSA) has released an alert warning that five vulnerabilities are being actively targeted by nation-state actors. The bugs affect VPN solutions, collaboration-suite software, and virtualization technologies in widely deployed platforms from Citrix, Fortinet, Pulse Secure, Synacor, and VMware. According to the NSA, the goal of the

According to recent Check Point Security Research, Chinese threat actor group APT31 allegedly cloned and re-used a National Security Agency hacking tool years before Microsoft patched the severe vulnerability that it targeted. The tool was a Windows-based program that was referred to as “Jian” until the Microsoft vulnerability was patched

Congress has called on the National Security Agency to be more transparent regarding a cyberattack that occurred in 2015 against Juniper Networks. The Juniper Networks supply-chain breach attack bears similarities to the recent SolarWinds espionage campaign, hence the emphasis on acquiring more information about it. Last week, SolarWinds sent a

Elizabeth Jo Shirley, a 47-year-old West Virginia resident has been sentenced to over 11 years in federal prison after she kidnapped her daughter, fled to Mexico, and attempted to sell classified NSA information stolen from her place of work to Russia. Shirley pleaded guilty to all charges, including unlawfully retaining

US cybersecurity official Rob Joyce has been named the new leader of the National Security Agency’s (NSA) Cybersecurity Directorate. Joyce was previously the NSA’s top representative in the UK. Joyce will replace Anne Neuberger, who was recently appointed Deputy National Security Advisor for Cyber and Emerging Technology on the National

From Dark Reading: The National Security Agency recommended that enterprises use only their designated DNS resolver in DNS traffic and avoid third-party resolvers. Domain Name System technology, or DNS over HTTPS, DoH, can be abused by attackers. Companies using only their designated DNS server is the safest route and all

The COVID-19 pandemic has created a massive movement towards working from home, inadvertently also creating more opportunities for hackers. The National Security Agency (NSA) released an advisory warning that Russian-state sponsored hackers have been actively attacking a vulnerability in remote-work platforms developed by VMware. The agency also released a security

Although the NSA has maintained that its mass surveillance program was efficient in stopping terrorist attacks, a new US court ruling found that the program may have been illegal, even unconstitutional. The mass surveillance program perpetrated by the NSA was exposed in 2013 by a former contractor and whistleblower Edward

Two government agencies, the NSA and the FBI, have warned about a new malware variant called Drovorub that intentionally targets Linux systems and was constructed by the Russian military for use in cyber-espionage operations. Drovorub boasts a variety of espionage capabilities, including file stealing and remote code execution. According to

The US National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) have released a joint advisory that foreign adversaries could be actively targeting US critical infrastructure across the nation. The alert states that infrastructure such as power plants, factories, oil, and gas refineries could be among the