There used to be a time when malware signed with a legitimate certificate was the mark of a sophisticated, nation-state-backed attacker. Now anyone can have signed malware.
Some Google G Suite customers' passwords were stored in plain text on the company's network since 2005.
In Firefox 67, Mozilla has moved to block cryptominers and browser fingerprinters, which track users across the web.
Kudos to Stack Overflow, for promptly notifying users as soon as it identified a breach and posting an update with more details as it learns them.
New Google research on account takeovers found that basic account hygiene can defeat the vast majority of attacks.
Atlassian, GitHub, and GitLab pledged to continue the information sharing relationship they started while investigating the origins of the recent ransomware incident which affected BitBucket, GitHub, and GitLab users.
Attackers are increasing their use of "cipher stunting," a technique that randomizes their SSL/TLS signatures, to obscure the malicious web traffic and make it harder to detect.
A weakness in the Bluetooth pairing protocol in some Titan keys can leave them open to hijacking.
Like the earlier Meltdown and Spectre class of bugs, the new side-channel attacks ZombieLoad, RIDL, and Fallout take advantage of weaknesses in the processor's speculative execution feature to harvest secrets from system memory.
Dennis Fisher talks with Daniel Gruss of TU Graz about the Zombiload attack on Intel processors.
End-of-life doesn’t mean no longer a threat. Microsoft decided to release security updates for no longer supported Windows 2003 and Windows XP systems to fix a bug that could be exploited by a worm.
A WhatsApp vulnerability has reportedly been used in highly targeted attacks to install spyware on victims' phones.
Alex Pinto from Verizon Enterprise joins Dennis Fisher to break down the 2019 Data Breach Investigations Report.
The Verizon Data Breach Investigations Report isn’t just full of interesting data breach statistics; it also offers enterprise defenders valuable insights on the kind of real-world threats they should be worrying about.
Dennis Fisher, Zoe Lindsey, and Pete Baker wade into the jumbled mess of Swordfish and then emerge into the sunlight of Three Days of the Condor.