New Borat remote access malware is no laughing matter
A new remote access trojan (RAT) named Borat has appeared on darknet markets, offering easy-to-use features to conduct DDoS attacks,…
Chinese hacking group uses new ‘Fire Chili’ Windows rootkit
The Chinese APT group known as Deep Panda has been spotted in a recent campaign targeting VMware Horizon servers with…
Google Chrome 100 released with new features, icon, and more
Google has released Chrome 100 today, March 29th, 2022, to the Stable desktop channel, and it includes a new logo, security…
Hacked WordPress sites force visitors to DDoS Ukrainian targets
Hackers are compromising WordPress sites to insert a malicious script that uses visitors' browsers to perform distributed denial-of-service attacks on…
Security’s Life Cycle Isn’t the Developers’ Life Cycle
Whether it's PCI-DSS, SSDLC, or GDPR, the criteria that security standards expect businesses to uphold are neither realistic or feasible.
APIs & the Software Supply Chain — Evolving Security for Today’s Digital Ecosystem
Securing APIs requires both a "shift left" methodology and "shield right" action.
Custom macOS malware of Chinese hackers ‘Storm Cloud’ exposed
Researchers have discovered a previously unknown macOS malware variant called GIMMICK, which is believed to be a custom tool used…
Checkmarx Launches Comprehensive Supply Chain Security Solution
Now available for use with Checkmarx Software Composition Analysis (SCA), the solution restores trust in modern application development while letting…
Android password-stealing malware infects 100,000 Google Play users
A malicious Android app that steals Facebook credentials has been installed over 100,000 times via the Google Play Store, with…
Code-Sabotage Incident in Protest of Ukraine War Exposed Open Source Risks
The maintainer of a widely used npm module served up an unwelcome surprise for developers.