All Articles

Browse by Category:

Browse by Tag:

Government Podcast Privacy Microsoft Malware Ransomware Vulnerability Data Breaches Google Encryption Apple Phishing 2fa Hardware Iot Security Apt Android Ciso Supply Chain Cybercrime Cloud Solarwinds Hacker Movies Internet Black Hat Facebook Labs Research Botnet Cisa Linux Patching Government Agencies Vulnerabilities Log4j Windows Patch Vpn Software Security Apache Open Source Legislation Bug Bounty Networking Gdpr Critical Infrastructure Security Mobile Mozilla Magecart Disinformation Vmware

2360 articles:

Decipher Podcast: James Plouffe

James Plouffe, a former technical adviser for Mr. Robot, joins Dennis Fisher to talk about the show's cultural legacy.

Podcast

Prices for Attack Tools on Dark Web Forums Remain Stagnant

Flashpoint analysts look at Dark Web marketplaces and see that prices have not changed all that much in two years.

Cybercrime

Wyden Introduces Tough New Privacy Bill

Sen. Ron Wyden has introduced a new privacy measure that would allow the FTC to assess huge fines for corporations that misuse consumer data--and mean jail time for executives who lie about their companies' policies.

Privacy, Government

Custom Instructions Comes to Arm, Secure Design Has to be On Board

Arm is bringing custom instructions to its Cortex-M processors. The overall security of these processors will depend on how these instructions are actually implemented.

Hardware, Microcontroller

HTTP Request Smuggling Bug in Go Affects Kubernetes

A flaw in the way Go handles some invalid HTTP headers could allow an attacker to authenticate as any user on a Kubernetes server in some instances.

Kubernetes

Decipher Podcast: Kenn White

Kenneth White of MongoDB joins Dennis Fisher to discuss the challenges of encryption implementations in modern enterprise networks.

Podcast

Industry Alliance to Make Security Products Work Together

Some of the biggest names in security have banded together for a new industry initiative to make it easier for different security technologies to work together.

Open Source, Partnership

Lazarus Group Deploying New macOS Backdoor

The Lazarus APT group has developed another macOS backdoor that has been delivered through a fake cryptocurrency trading app.

Macos

Imperva Breach Stemmed From Compromised Internal Compute Instance

A data breach disclosed in August by Imperva came from an AWS API key stolen from a compromised internal compute instance in 2017.

Data Breaches

California Releases Draft Rules for CCPA

CCPA becomes law on Jan. 1. The California Department of Justice has released draft rules on how businesses should make sure they don't violate the new data privacy law.

Government, Privacy, Legislation

FIN7 Attackers Roll Out New Tools

The FIN7 group has begun deploying new tools, including a module that specifically targets a remote administration tool for payment card systems.

Malware

Audit Uncovers Critical Flaw in iTerm2

A Mozilla-funded security audit of the iTerm2 terminal emulator for macOS found a critical remote-code execution bug.

Vulnerability

Microsoft Identifies Targeted Attacks on Presidential Campaign, Government Officials

An attack group known as Phosphorus that is linked to the Iranian government has targeted email accounts of U.S. government officials and people associated with a presidential campaign.

Malware, Government

Complying With the California Privacy Law Could Cost $55 Billion

Companies pay attention to privacy legislation and regulations because they don't want the penalties and fines. There is also a hefty cost associated with becoming compliant in the first place.

Privacy, Government

FBI Okays Paying in a Ransomware Attack

The FBI does not advocate paying a ransom because there's no guarantee the organization will get the data back, but acknowledged in an updated guidance that sometimes, for some organizations, paying the ransom makes a lot of sense.

Ransomware