Latest News


Chaffetz, Cummings ask SSA for complete OIG report, pen test results

House Oversight Committee asked SSA Acting Commissioner Carolyn Colvin to hand over the unredacted version of a penetration testing recently done at the agency.


UMICH researchers remotely pick locks of Samsung SmartThing connected home systems

In a series of attacks, University of Michigan researchers hacked into Samsung SmartThing connected home systems and remotely unlocked doors.


Researcher weighs in with heavy-duty IoT vulnerability in Fitbit scales

Fitbit has acknowledged on its website that an April 2016 update to its Aria Wi-Fi Smart Scale, an Internet-connected bathroom scale, patched a critical security vulnerability that was discovered through Google's Project Zero initiative.


Judge compels woman to provide fingerprint to open Apple iPhone

The FBI recently pressed for a 29-year-old Los Angeles woman to provide her fingerprint to open her phone after she was sentenced in an identity theft case.


NHS sharing unfiltered medical data on 1.6M patients with Google AI company

As part of a joint venture to develop groundbreaking healthcare apps, the UK's National Health Service (NHS) has agreed to share new and historical healthcare data on 1.6 million patients with Google's AI company DeepMind.

Data Breach Blog

1,206 Solano Community College employees victimized in W-2 data breach

Solano Community College in Fairfield, Calif. was hit with a spearphishing attack led to the W-2 information for about 1,200 staffers being compromised.

LuckyPet data breach compromises online payment info

Seattle-based pet store LuckyPet notified the California State Attorney General's office of a data breach that compromised online customer information.

18,000 possibly affected by Archdiocese of Denver data breach

Incidents of fraud were reported after an unauthorized person accessed an Archdiocese of Denver database maintained by a third-party and which contained PII on 18,000 former and current employees and their dependents.

Featured News

Pwnedlist vulnerability exposed 866M accounts

Pwnedlist vulnerability exposed 866M accounts

A Michigan school district network engineer discovered a security vulnerability affecting the service that exposed 866 million account credentials.

May issue now available!

The Threat Hunter Blog

Next up. A look at Locky Ransomware

Next up. A look at Locky Ransomware

We've been examining some of the newer - or, at least, most currently prevalent - strains of ransomware. This time we look at Locky.

May 2016 Product Reviews

AlienVault Unified Security Management Platform

Significant, mature next-generation blend of SIEM and UTM capabilities at a very reasonable price. Outstanding customer relationship building.

LogRhythm Security Intelligence Platform

Probably the most complete pure-play SIEM we’ve seen with the added benefit of many next-gen features and superlative correlation and analytics.

CorreLog SIEM Correlation Server

Excellent price point for a very flexible SIEM/log correlator with lots of features.


Speak the board's language or get fired

Speak the board's language or get fired

A communication gap exists today between CISOs and the board of directors, says Feris Rifai, CEO, Bay Dynamics.

Government surveillance from Caesar to Nixon

Government surveillance from Caesar to Nixon

Government surveillance is, however, not new, says Patrick O'Kane, barrister and compliance counsel.


Sign up to our newsletters