Page 2 of 55

Account Takeover Attacks Become a Phishing Fave

More than three-quarters of ATOs resulted in a phishing email, a new report shows.

Japanese Cryptocurrency Exchange Hit with $60M Theft

The incident highlights a broader problem of poor security in cryptocurrency exchanges throughout the country.

Microsoft Patch Alert: Despite weird timing, September’s Windows and Office patches look good

As we near the end of patching’s “C Week” (which is to say, the week that contains the third Tuesday of the month), there are no show-stopping bugs in the Windows and Office patches and just a few gotchas. As long as you avoid Microsoft’s patches for Intel’s Meltdown/Spectre bugs, you should be in good shape.

Why a Patch Monday?

On Sept. 17, Microsoft released two very-out-of-band cumulative updates for Windows 10:

To read this article in full, please click here

NSS Labs Files Antitrust Suit Against Symantec, CrowdStrike, ESET, AMTSO

Suit underscores longtime battle between vendors and labs over control of security testing protocols.

Cryptojackers Grow Dramatically on Enterprise Networks

A new report shows that illicit cryptomining malware is growing by leaps and bounds on the networks of unsuspecting victims.

Cryptojackers Grow Dramatically on Enterprise Networks

A new report shows that illicit cryptomining malware is growing by leaps and bounds on the networks of unsuspecting victims.

As Tech Drives the Business, So Do CISOs

Security leaders are evolving from technicians to business executives as tech drives enterprise projects, applications, and goals.

Mirai Hackers’ Sentence Includes No Jail Time

The trio behind Mirai sentenced to probation and public service in return for cooperation with law enforcement and researchers.

WebAuthn, FIDO2 Infuse Browsers, Platforms with Strong Authentication

New standards offer protection against hacking, credential theft, phishing attacks, and hope for the end of an era of passwords as a security construct.

FBI: Phishing Attacks Aim to Swap Payroll Information

Social engineering scams target employees' payroll credentials so attackers can access and change their bank account data.