As the second Kaminsky Fellow, Dr. Andrews will study the use of threat intelligence to track campaigns against the human rights community.

A number of Discord communities focused on cryptocurrency have been hacked this past month after their administrators were tricked into running...

On-demand human solvers are now augmenting automated website cyberattacks, offering a better way around tougher anti-bot puzzles.

A Trojan SDK snuck past Google Play protections to infest 101 Android applications, bent on exfiltrating infected device data.

Targeted attacks against Saudi Arabia and other Middle East nations have been detected with a tool that's been in the wild since 2020.

The government-sponsored dental and oral healthcare provider warned its customers that a March attack exposed sensitive data, some of which was...

Tightening access controls and security clearance alone won't prevent insider threat risks motivated by lack of trust or loyalty.

New report provides actionable intelligence about attacks, threat actors, and campaigns.

Improving the security of open source repositories while keeping malicious components out requires a combination of technology and people.

Informants have released data that includes thousands of safety complaints the company has received about its self-driving capability, as well as...

Phishing campaigns targeting travelers have evolved from simple, easy-to-spot fraud attempts to highly sophisticated operations.

The number of phishing websites tied to domain name registrar Freenom dropped precipitously in the months surrounding a recent lawsuit from social...

To mitigate risk, both developers and users must include security principles and technologies as core foundations in new devices.

Ukraine head of cybersecurity Victor Zhora says the world needs "efficient legal instruments to confront cyber terrorism."

This is the first incident where a threat actor from the country appears to be laying the groundwork for disruptive attacks in the future,...

The new Red Hat Trusted Software Supply Chain services help developers take a secure-by-design approach to build, deploy, and monitor software.

Russian code that could tamper with industrial machines and toggle RTUs on and off was floating around VirusTotal for years before being noticed....

The infamous North Korean APT group is using Log4Shell, the 3CX supply chain attack, and other known vectors to breach Microsoft Web servers.

The streaming giant is looking to bolster flagging subscription growth and profits, but security researchers say the move offers a perfect...

Perception Point's 2023 Annual Report: Cybersecurity Trends & Insights' analyzes the most prevalent cyberattack trends amidst today's complex...

Bank of Ghana's security operations center will boost visibility into threats and enable threat intelligence sharing, it says.

A campaign against customers of Portuguese banks uses a capable financial malware strain dubbed PeepingTitle, written in the Delphi programming...