Security news that informs and inspires

SEARCH

All Articles

Browse by Category:
Duo Labs Industry Events Industry News passwords Product & Engineering
Browse by Tag:
Government Podcast Privacy Microsoft Malware Ransomware Vulnerability Data Breaches Google Encryption Apple Phishing 2fa Hardware Iot Security Apt Android Ciso Supply Chain Cybercrime Cloud Solarwinds Hacker Movies Internet Black Hat Facebook Labs Research Botnet Cisa Linux Patching Government Agencies Vulnerabilities Log4j Windows Patch Vpn Software Security Apache Open Source Legislation Bug Bounty Networking Gdpr Critical Infrastructure Security Mobile Mozilla Magecart Disinformation Vmware
2237 articles:

CISA: North Korea-Backed Actors Using Maui Ransomware

North Korean government-backed actors are using the new Maui ransomware to target health care organizations, CISA says.

Ransomware, North Korea

New Hive Ransomware Variant Gets Rust Overhaul

Hive is the latest ransomware family to undergo a full code migration to Rust.

Ransomware

Decipher Podcast: Joe Grand

Dennis Fisher talks with Joe Grand, renowned hardware hacker and member of the L0pht, about his recent work hacking hardware crypto wallets, hacking culture, and why curiosity matters.

Podcast

Dozens of Malicious Data-Harvesting NPM Packages Found

Researchers have exposed dozens of malicious npm packages that harvest sensitive data from end users of various applications and websites.

Npm Packages

Google Warns of Chrome Zero-Day Bug

Google has fixed a high-severity bug in Chrome for which an exploit exists in the wild.

Google, Google Chrome

Black Basta Ransomware Actors Take Aim at PrintNightmare Flaw

Threat actors deploying the Black Basta ransomware have exploited the Microsoft PrintNightmare bug as part of their attacks.

Ransomware, Microsoft

Decipher Podcast: Source Code 7/1

This week's Source Code podcast by Decipher takes a look behind the scenes at top news with input from our sources.

Podcast, Source Code

Google Cracks Down on Domains Used by Hack-For-Hire Groups

Hack-for-hire firms are targeting a range of accounts from Google and major webmail providers in credential theft campaigns.

Hack for Hire, Google

To Combat Zero Day Variants, ‘We Need Comprehensive Fixes’

At least half of the zero days exploited in the wild in 2022 are variants of previously fixed bugs, Google data shows.

Google, Zero Day

ZuoRAT Malware Found Hitting Home Routers

A new piece of malware called ZuoRAT, based on the Mirai code, is hitting SOHO routers and performing DNS and HTTP hijacking.

Malware, China

U.S. Gov Agencies Face Looming Microsoft Exchange Online Modern Auth Deadline

New guidance urges U.S. government agencies to expedite the switch to Modern Auth in Exchange Online ahead of Microsoft's Oct. 1 deadline.

Microsoft

Q&A: Dinah Davis

Dinah Davis, VP of research and development operations at Arctic Wolf, discusses the challenges facing the cybersecurity industry when it comes to diversity and amplifying the voices of women.

Women in Tech, Women in Security

AstraLocker Ransomware Spread in ‘Smash and Grab’ Attacks

A new variant of the AstraLocker found being deployed directly in Microsoft Office attachments reflects a focus by attackers on making a big impact and getting a quick payout.

Ransomware

Decipher Podcast: John Hultquist

John Hultquist, VP of Mandiant Intelligence, talks about new Mandiant research that exposes a Chinese information operation campaign targeting U.S., Canadian and Australian rare earths mining companies.

Podcast

Bringing Ransomware Infrastructure Into the Light

Researchers from Cisco Talos were able to de-anonymize the infrastructure used by several ransomware groups, including Quantum, Snatch, and DarkAngels.

Ransomware