BlackLotus, a UEFI bootkit that’s sold on hacking forums for about $5,000, can now bypass Secure Boot, making it the first known malware to run

Cybercriminals are disguising the PlugX remote access trojan as a legitimate open-source Windows debugging tool to evade detection and compromise systems. In a recent case

Google continued its client-side encryption rollout, the feature generally available to some Gmail and Calendar users who can now send and receive encrypted messages and

The White House has ordered all federal government employees to delete TikTok from work devices, over fears the video-sharing app could be used to spy

What’s more dangerous than Chinese spy balloons? Unsafe software and other technology products, according to America’s Cybersecurity and Infrastructure Agency (CISA) Director Jen Easterly. During

Dish has confirmed what everyone was suspecting, given the ongoing downtime experienced by some of its systems, that the US telco was hit by criminal

We created McAfee+ so people can be safe and feel safe online, particularly in a time where there’s so much concern about identity theft and

The miscreants who infiltrated News Corporation’s corporate IT network spent two years in the media monolith’s system before being detected early last year. The super-corp,

A series of distributed-denial-of-service (DDoS) attacks shut down nine Danish hospitals’ websites for a few hours on Sunday, but did not have any life-threatening impact

The US Marshals Service, the enforcement branch of the nation’s federal courts, has admitted to a “major” breach of its information security defenses allowed a

SCSW The vast majority of off-the-shelf software is composed of imported components, whether that’s open source libraries or proprietary code. And that spells a security

US telco Dish said it is investigating a multi-day network “issue” that knocked some of its systems offline, leaving customers stranded from the web. In

Smartphones put the proverbial world in the palm of your hand—you pay with it, play with it, keep in touch with it, and even run

Starting in June, companies operating in China must undergo a regulatory intervention when sending data abroad, thanks to the Cyberspace Administration of China (CAC). The

In brief A Russian national has been hit with a five-count indictment alleging he smuggled hardware and software used for counterintelligence operations out of the

Microsoft is recommending that Exchange server users scan certain objects for viruses and other threats that until now had been excluded. In particular, the software

Dutch police have arrested three men for their alleged involvement with a ransomware gang that stole sensitive data and extorted hundreds of thousands of euros

Canadian communications giant Telus is investigating whether crooks have stolen employee data and its source code, all of which is being offered for sale on