In addition to testing for accuracy and equity, the GSA study will also look at how different vendor products perform and match up to NIST standards when it comes to the non-biometric aspects of identity assurance.
Columnist Eric Byres of aDolus Technology warns security teams to take CISA’s latest advisory on the PIPEDREAM attack tools as a serious nation-state threat.
Iranian threat actor Rocket Kitten has been distributing the Core Impact penetration testing tool by exploiting a remote code execution flaw in VMware Workspace ONE Access and Identity Manager, which was already addressed by VMware early this month, The Hacker News reports.
Former Democratic National Committee Chief Security Officer Bob Lord has been enlisted by the Cybersecurity and Infrastructure Security Agency as its new senior technical advisor, CyberScoop reports.
More than 500,000 individuals had their data compromised following a cyberattack at Adaptive Health Integrations, a healthcare billing services firm in North Dakota, KVRR reports.
Cybercriminals could exploit a security flaw in a web version of Everscale's Ever Surf cryptocurrency wallet to obtain complete control of targets' cryptowallets, according to The Hacker News.
The Register reports that almost $3 million worth of non-fungible tokens have been exfiltrated by threat actors that hacked into the Instagram account of the Bored Ape Yacht Club, who then posted a link redirecting to a spoofed website aimed at asset harvesting.