U.K. Government Drops Apple Encryption Backdoor Order After U.S. Civil Liberties Pushback
2 min read
The U.K. government has apparently abandoned its plans to force Apple to weaken encryption protections and include...
After two decades of developing increasingly mature security architectures, organizations are running up against a hard truth:...
PyPI Blocks 1,800 Expired-Domain Emails to Prevent Account Takeovers and Supply Chain Attacks
2 min read
The maintainers of the Python Package Index (PyPI) repository have announced that the package manager now checks...
The threat actors behind the Noodlophile malware are leveraging spear-phishing emails and updated delivery mechanisms to deploy...
Cybersecurity researchers have lifted the lid on the threat actors' exploitation of a now-patched security flaw in...
Power doesn’t just disappear in one big breach. It slips away in the small stuff—a patch that’s...
Malicious PyPI and npm Packages Discovered Exploiting Dependencies in Supply Chain Attacks
3 min read
Cybersecurity researchers have discovered a malicious package in the Python Package Index (PyPI) repository that introduces malicious...
Organizations handling various forms of sensitive data or personally identifiable information (PII) require adherence to regulatory compliance...
Cybersecurity researchers have detailed the inner workings of an Android banking trojan called ERMAC 3.0, uncovering serious...
Russian Group EncryptHub Exploits MSC EvilTwin Vulnerability to Deploy Fickle Stealer Malware
3 min read
The threat actor known as EncryptHub is continuing to exploit a now-patched security flaw impacting Microsoft Windows...
A Chinese-speaking advanced persistent threat (APT) actor has been observed targeting web infrastructure entities in Taiwan using...
U.S. Sanctions Garantex and Grinex Over $100M in Ransomware-Linked Illicit Crypto Transactions
4 min read
The U.S. Department of the Treasury's Office of Foreign Assets Control (OFAC) on Thursday renewed sanctions against...
We used to think of privacy as a perimeter problem: about walls and locks, permissions, and policies....
Cisco has released security updates to address a maximum-severity security flaw in Secure Firewall Management Center (FMC)...
Multiple HTTP/2 implementations have been found susceptible to a new attack technique called MadeYouReset that could be...
Japan's CERT coordination center (JPCERT/CC) on Thursday revealed it observed incidents that involved the use of a...
You check that the windows are shut before leaving home. Return to the kitchen to verify that...
New Android Malware Wave Hits Banking via NFC Relay Fraud, Call Hijacking, and Root Exploits
5 min read
Cybersecurity researchers have disclosed a new Android trojan called PhantomCard that abuses near-field communication (NFC) to conduct...
Story teaser text: Cybersecurity leaders face mounting pressure to stop attacks before they start, and the best...
Google said it's implementing a new policy requiring developers of cryptocurrency exchanges and wallets to obtain government...