Security News

Over 4 Terabytes of Data Exposed, Including Social Media Profiles, Personal InformationSome 4 terabytes of data on over 1.2 billion individuals - including LinkedIn and Facebook profiles - was...

A researcher has earned $5,000 from Google for an interesting cross-site scripting (XSS) vulnerability found in the dynamic email feature added a few months ago to Gmail. read more

Intel Has Fixed Vulnerability That Allows for 'Near-Omnipotent Control' of DeviceResearchers at Eclypsium have revealed new details concerning a significant flaw in Intel's PMx driver, which they...

A team of cybersecurity researchers today disclosed details of two new potentially serious CPU vulnerabilities that could allow attackers to retrieve cryptographic keys protected inside TPM chips...

Emotet had a 730% increase in activity in September after being in a near dormant state, Nuspire discovered. Emotet, a modular banking Trojan, has added additional features to steal contents of...

Lateral phishing attacks – scams targeting users from compromised email accounts within an organization – are becoming an increasing concern in the U.S. Whereas in the past attackers would send...

The EU has fixed a flaw in the powerful yet complex eIDAS digital identification system that let people authenticate as someone else.

Interesting article and paper. As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered. Read my blog posting guidelines here....

A group of security researchers from German universities has devised a new class of web cache poisoning attacks that could render victim services unreachable. read more

Fortinet security researchers took a deep dive into NukeSped malware samples that share multiple similarities with other malware families used by North Korean threat actors. read more