11 Aug

Meta privacy red team lead: Does your business know its privacy adversaries?

Black Hat Miscreants aren’t only working to exploit flaws in an enterprise’s security posture, they’re also looking for holes in organizations’ privacy programs to steal

Author rabih
11 Aug

Boffins rate npm and PyPI package security and it’s not good

The Open Source Security Foundation (OpenSSF), as its name plainly states, aims to help make open source software more secure, but improvements flowing from its

Author rabih
10 Aug

Ex-CISA chief Krebs calls for US to get serious on security

Black Hat It’s time to reorganize the US government and create a new agency focused solely on on digital risk management services, according to former

Author rabih
10 Aug

As Black Hat kicks off, the US government is getting the message on hiring security talent

Black Hat With the world’s largest collection of security folk gathering in Las Vegas for Black hat there are encouraging signs that the US government

Author rabih
10 Aug

Maui ransomware linked to North Korean group Andariel

The Maui ransomware that has been used against US healthcare operations has been linked to Andariel, a North Korean state-sponsored threat with links to the

Author rabih
10 Aug

Google’s bug bounty boss: Finding and patching vulns? ‘Totally useless’

Simply finding vulnerabilities and patching them “is totally useless,” according to Google’s Eduardo Vela, who heads the cloud giant’s product security response team. “We don’t

Author rabih
10 Aug

Cloudflare: Someone tried to pull the Twilio phishing tactic on us too

Cloudflare says it was subject to a similar attack to one made on comms company Twilio last week, but in this case it was thwarted

Author rabih
10 Aug

More Dangers of Cyberbullying Emerge—Our Latest Connected Family Report

Earlier this year, our global Connected Family Study revealed the online habits of parents and their children. What we found called for a closer look. 

Author rabih
10 Aug

Businesses should dump Windows for the Linux desktop

Opinion I’ve been preaching the gospel of the Linux desktop for more years than some of you have been alive. However, unless you argue that

Author rabih
09 Aug

Patch Tuesday: Yet another Microsoft RCE bug under active exploit

August Patch Tuesday clicks off the week of hacker summer camp in Las Vegas this year, so it’s basically a code cracker’s holiday too.  Let’s

Author rabih
09 Aug

APIC fail: Intel ‘Sunny Cove’ chips with SGX spill secrets

A group of computer scientists has identified an architectural error in certain recent Intel CPUs that can be abused to expose SGX enclave data like

Author rabih
09 Aug

Malicious deepfakes used in attacks up 13% from last year, VMware finds

Security teams are facing down more cyberattacks following Russia’s invasion of Ukraine, and sophisticated crooks are using double-extortion techniques and, increasingly, deepfakes in their strikes.

Author rabih
09 Aug

Microsoft’s fix for ‘data damage’ risk hits PC performance

Microsoft has warned that Windows devices with the newest supported processors might be susceptible to data damage, noting the initial fix might have slowed operations

Author rabih
09 Aug

Chinese scammers target kids with promise of extra gaming hours

Fraudsters in China have targeted a child with promises of allowing them to get around the nation’s time limits on playing computer games – for

Author rabih
09 Aug

China-linked spies used six backdoors to steal info from defense, industrial enterprise orgs

Beijing-backed cyberspies used specially crafted phishing emails and six different backdoors to break into and then steal confidential data from military and industrial groups, government

Author rabih
08 Aug

US treasury whips up sanctions for crypto mixer Tornado Cash

The US Treasury Department is levying sanctions against Tornado Cash, a notorious cryptocurrency mixer that it says has been used by threat groups like ransomware

Author rabih
08 Aug

Twilio customer data exposed after its staffers got phished

Twilio confirmed a breach of the communication giant’s network and accessed “a limited number” of customer accounts after tricking some employees into falling for a

Author rabih
08 Aug

Microsoft tightens Edge security for less visited websites

Microsoft wants to make it safer for Edge users to browse and visit unfamiliar websites by automatically applying stronger security settings. The new feature is

Author rabih
Load moreLoadingAll items loaded