Security News

Multiple security vulnerabilities have been discovered by SEC Consult in various Zyxel devices, including flaws that involve sending unauthenticated DNS requests and hardcoded FTP credentials. read more

In a new report, McAfee Labs said cybercriminals were focusing in on attacking weak IoT devices and extracting huge troves of data from large companies.

The compromise of several older versions of a popular Ruby software package (aka a Ruby “gem”) has led to the discovery of a more widespread effort to inject malware and mining software through...

What They Are and How to Handle ThemTo explore how credential stuffing attacks and brute force attacks differ, we need to understand what they are and how they operate. Here is a quick summary.

A new professional credential aims to help healthcare organizations bolster their security leadership bench strength, says William Brad Marsh, co-chair of a committee that developed the certification.

The insurance giant serves at least 83 million U.S. households.

Not Yet Clear How Many Customers May Have Been AffectedInsurer State Farm has been hit by a credential-stuffing attack designed to gain access to U.S. customers' online accounts, a company...

Cybercriminals Look to Steal IDs and Payment InformationSince it was first spotted in January, the Baldr credential stealer has spread from Russian underground forums throughout the global gaming...

The adversaries have retooled with EternalBlue and credential theft to add a new "access mining" revenue stream.

All going just as you'd expect, reckons Akamai Content delivery network Akamai Technologies reckons that despite the time and effort spent convincing people not to fall for phishing and other...