The rise of millionaire zero-day exploit markets
Researchers detailed the multi-millionaire market of zero-day exploits, a parallel economy that is fueling the threat landscape. Zero-day […] The…
Hackers exploit Microsoft MSHTML bug to steal Google, Instagram creds
A newly discovered Iranian threat actor is stealing Google and Instagram credentials belonging to Farsi-speaking targets worldwide using a new…
Threat actors find and compromise exposed services in 24 hours
Researchers set up 320 honeypots to see how quickly threat actors would target exposed cloud services and report that 80%…
Malware now trying to exploit new Windows Installer zero-day
Malware creators have already started testing a proof-of-concept exploit targeting a new Microsoft Windows Installer zero-day publicly disclosed by security…
Apple sues spyware-maker NSO Group, notifies iOS exploit targets
Apple has filed a lawsuit against Pegasus spyware-maker NSO Group and its parent company for the targeting and spying of…
Microsoft Edge adds Super Duper Secure Mode to Stable channel
Microsoft has quietly added a 'Super Duper Secure Mode' to the Microsoft Edge web browser, a new feature that brings security improvements without significant…
Exploit released for Microsoft Exchange RCE bug, patch now
Proof-of-concept exploit code has been released online over the weekend for an actively exploited high severity vulnerability impacting Microsoft Exchange…
Is it OK to Take Your CEO Offline to Protect the Network?
Are you asking the right questions when developing your incident response playbook? What security tasks are you willing to automate?
Why the ‘Basement Hacker’ Stereotype Is Wrong — and Dangerous
It engenders a false sense of superiority that spurs complacency among risk managers and executives, who in turn may underinvest…
Why the ‘Basement Hacker’ Stereotype Is Wrong — and Dangerous
It engenders a false sense of superiority that spurs complacency among risk managers and executives, who in turn may underinvest…