While helping a customer deal with a state-sponsored attack group which had been stealing data and email for about eight months, Microsoft’s incident response team uncovered five other threat actors operating simultaneously on the network.
The United States needs a top-level cybersecurity coordinator, more powers for CISA, and cybersecurity-specific committees in Congress, the Cyberspace Solarium Commission said in its long-awaited report.
Microsoft has taken over the control infrastructure for the Necurs botnet, disrupting the operations of the notorious spam and malware-distribution network.
The Yubico Validation Server contains a pair of vulnerabilities, one of which allows the replay of one-time passwords.
DuckDuckGo's new Tracker Radar tool protects users against pervasive third-party tracking across the web.
Let's Encrypt has delayed revoking some of the certificates affected by a server bug in order to ensure stability on those sites.
New Internet technologies bring more privacy to the network, but they have the side effect of breaking security in enterprise networks, Internet pioneer Paul Vixie said at RSA Conference 2020.
The EARN IT Act has not yet made it to the Senate floor amid a lack of enthusiasm from legislators, but that may change.
Let's Encrypt will revoke three million certificates because of a subtle bug in its server software that affected the way domain records were checked.
Security researchers, law enforcement, and analysts lurk in criminal marketplaces and forums collecting information which may indicate a possible data breach or data theft. It’s a tricky balancing act—blending in among criminals while not engaging in criminal activity that could get them arrested.
Dennis Fisher is joined by Chris Brook and Brian Donohue to revisit Enemy of the State, the 1998 techno-paranoia thriller that foretold much of what's happening in today's surveillance society.
Security through obscurity isn't always a bad thing, at least in the esoteric world of ICS security.
Encryption back doors will make matters worse, not better, crypto pioneers say.
Wendy Nather, head of advisory CISOs at Duo, joins Dennis Fisher to discuss her RSA keynote speech on democratizing security and making security more usable and collaborative.
A review of the SoloKey firmware found a serious downgrade attack flaw, which an attacker could use to install an older, vulnerable version. The bug has been fixed.