Security News

A story published here on July 12 about a new sextortion-based phishing scheme that invokes a real password used by each recipient has become the most-read piece on KrebsOnSecurity since this site...

If you trust Google, this is the second-factor security key for you.

At Node Summit, coders served some humble pie Software developers have been lionized in recent years for their influence over the information economy. At the Node Summit in San Francisco,...

Phishing attackers have failed to compromise a single employee account at Google since the company mandated authentication using U2F hardware tokens in early 2017. That’s the remarkable claim made...

Russians Tied to Hack Attacks, But 'Two-Factor' No Silver Bullet, Google WarnsSpear phishing attacks are in the news again following the Justice Department's indictment of Russian military...

Google has not had any of its 85,000+ employees successfully phished on their work-related accounts since early 2017, when it began requiring all employees to use physical Security Keys in place...

Google has not had any of its 85,000+ employees successfully phished on their work-related accounts since early 2017, when it began requiring all employees to use physical Security Keys in place...

A new phishing scam purports to be MYOB invoices - but really contains a novel banking trojan.

Brent Maher of Johnson Financial Group Offers Real-World Lessons LearnedThe key to lowering the risk of employees becoming victims of phishing is to adopt an "adult learning" approach to training,...

More than half of companies are plagued with phishing emails on a regular basis, and awareness training often isn't enough, according to an IronScales report.