Security News

Did a MySpace Hack Compromise 427 Million Passwords? (InfoRiskToday)
2016-05-27 21:40

Business Email Compromise: How Big Is the Problem? (InfoRiskToday)
2016-05-26 15:09

Protecting Cloud APIs Critical to Mitigating Total Compromise (Threatpost)
2016-05-19 18:20

When it comes to cloud computing, APIs more or less drive everything, but in the eyes of some researchers, existing security controls haven't kept pace.

Bug in Symantec’s anti-virus engine can lead to system compromise (Help Net Security)
2016-05-17 15:48

Google Project Zero researcher Tavis Ormandy has unearthed a critical remote code execution vulnerability in the anti-virus engine powering Symantec’s endpoint security products (including...

SAP vulnerability exploited to compromise enterprises worldwide (Help Net Security)
2016-05-11 21:50

A SAP vulnerability, patched over five years ago, is being leveraged to exploit SAP systems of many large-scale global enterprises, US-CERT warns. At least 36 organizations in the US, the UK,...

Blind XSS Vulnerability Allowed Compromise of GoDaddy Support (SecurityWeek)
2016-05-10 19:04

Misunderstanding Indicators of Compromise (Threatpost)
2016-04-21 13:00

In this Threatpost op-ed, Dave Dittrich and Katherine Carpenter explain the dangers of conflating measurable events, or observables, with indicators of compromise, which require context and other...

APT Targeting Tibetans Packs Four Vulnerabilities in One Compromise (Threatpost)
2016-04-19 11:00

Tibetans along with journalists and human rights workers in Hong Kong and Taiwan have been targeted in campaigns using phishing emails laced with Microsoft RTF attachments that exploit four...

FBI-Apple Aftermath: Finding the Elusive Compromise (InfoRiskToday)
2016-03-30 21:30

Facebook Fixes Instagram Vulnerability That Opened 1M Accounts to Compromise (Threatpost)
2016-03-28 18:58

Facebook was quick to fix an issue earlier this month that could’ve let an attacker break into four percent of all active, locked accounts.