The First Stop For Security News
Updated: 23 min 55 sec ago
The Android security update patches 15 bugs, four rated critical, 10 rated high and one ranked moderate in severity.
A Q&A with Kaspersky Lab researcher David Jacoby examines a gaping hole in the telco customer-service process that allows adversaries to commandeer phone calls.
At Google I/O, the tech giant announced it is beefing up security in phones with its latest Android Q operating system by offering direct updates and privacy controls.
Cloud misconfigurations, business email compromise (BEC) and intellectual property theft are all up in the Verizon DBIR 2019 from last year.
Having appropriate security configurations requires your applications, servers and databases to be hardened in accordance with best practices.
Cynet Free IR empowers its users with a solution that is accessible and easy to use, bringing crucial incident response services in-house, while saving them valuable time and resources.
Cisco has patched a critical flaw in its virtualized function automation tool, Cisco Elastic Services Controller.
Forensic analysis shows a Chinese APT using Equation Group hacking tools at least a year before Shadow Brokers dumped its cache in April 2017.
Oleksii Petrovich Ivanov has been extradited in the U.S. after allegedly launching malvertising campaigns that caused victims to view malicious ads on more than 100 million occasions.
After researchers were able to bypass a file upload validation flaw patch in WP Live Chat, a new patch has been issued.
Snowballing attacks using a recently patched critical bug show no sign of abating.
Cisco patches two high-severity bugs that could be exploited by remote attackers.
Web scammers are going after Marvel fans as the movie passes the $2.2 billion box-office mark, making it the second-highest grossing film of all time, behind only Avatar.
The three flaws enable an unauthenticated attacker to launch remote code execution attacks on printers.
A digital signing flaw killed add-ons for Firefox as well as Tor -- and no patch is yet available for Tor users.
Will connected devices be insecure forever? Or will legislation - such as the recent UK mandate announced this week - help boost IoT security?
Amidst the PR glitz and popularity of bug bounty programs, experts worry that actual smart security strategy is being left behind.
Short on concrete details but long on affirming cybersecurity skills as a critical piece of federal defense, the White House executive order aims to bolster the national cyber workforce.
The Threatpost team breaks down the strangest security stories this week - from Cartoon Network hacked to show stripper videos, to a church being scammed out of $1.75 million.
The malware has new tricks, like using the stunnel encrypted tunneling mechanism and abusing a legitimate shareware app.