Malwarebytes observed websites pushing a fake Safari update that leads to the installation of MacKeeper and ZipCloud.
AT&T asked the Federal Communications Commission (FCC) to limit its fine to no more than $16,000 and to delay non-monetary sanctions until they could undergo judicial review.
Yahoo's Interim CEO Ramses Martinez detailed the company's bug bounty program's successes since its creation in 2013.
A pair of security researchers discovered a way to hack into a TrackingPoint self-aiming rifle through its Wi-Fi network.
Two weeks after an international law enforcement effort shut it down and led to charges, indictments and arrests, reports say online crime forum Darkode is back.
Researchers at Trend Micro discovered a security flaw in Skoda automobiles that could allow an attacker to spy on vehicle data.
The White House detailed its plans for after the 180-day transition period covered under the USA Freedom Act.
Researchers at Dr. Web have discovered a faulty trojan designed as a backdoor for Linux that could also target Windows systems.
NYMag.com was hit with a DDoS attack that lasted about 12 hours and was executed by a man with a vendetta against all things having to do with New York City.
A flaw in the "forgot my login details" function, if exploited, could have allowed hackers to hijack Steam users' accounts.
After data on 21.5 million former and current OPM workers was exposed, U.S. officials are concerned that hackers can use the information to determine the identity of spies operating in China.
Planned Parenthood is investigating a data breach following reports that attackers released sensitive data on Sunday night.
WordPress issued its first transparency report of 2015, which covers the first six months of the year.
An appeals court in New York ruled that Facebook can't challenge Manhattan prosecutors' warrants seeking information on 381 users as part of an investigation into Social Security fraud.
A lawsuit filed in a federal court in California accused UCLA Health System of not adequately protecting the personal data of 4.5 million individuals affected by a 2014 breach.
Five researchers developed HORNET in order to provide a more high-speed anonymous browsing experience.
FBI Director James Comey, speaking at the Aspen Security Forum, said that terrorists are mulling strategies for launching cyberattacks against the U.S.
A bipartisan group of senators introduced legislation, that would increase the Department of Homeland Security's role in protecting federal the .gov domain.
A vulnerability in OpenSSH could allow an attacker to make up to 10,000 password entries during the open source tools' "login graced time."
A federal appeals court has breathed new life into a class action lawsuit against Neiman Marcus regarding the data breach the retailer experienced in 2013.
High-Tech Bridge released advisories on Wednesday that detail medium risk vulnerabilities in two WordPress plugins.
The Duke APT group continues to change up its tactics with the new "SeaDuke" and "CloudDuke" malware.
LifeLock is being investigated by the FTC for the second time after allegedly making false claims about security measures.
The Google Chrome team promoted Chrome 44 to the stable channel for Windows, Mac and Linux on Tuesday.
As Stephen Scharf moves into newly created CSO position at DTCC, global CISO Mark Clancy assumes helm as CEO at Soltra.
During a speech earlier in July, retired Sen. Saxby Chambliss (R-Ga.), drew parallels between breaches at the Office of Personnel Management (OPM) and Edward Snowden's actions.
The Office of Personnel Management (OPM) rewrote its privacy regulations to allow legislators and outside entities to look through its databases for signs of data breaches.
Certain employees at the Department of Homeland Security were exempted from the ban on private web-based email use on work computers.
If successfully exploited, the remote code execution vulnerability can enable an attacker to take full control of the affected system
A Morrisons supermarket auditor was sentenced to eight years in prison after leaking the personal information of more than 100,000 staff.
The U.S. Deputy Secretary of Homeland Security traveled to Israel to discuss the two countries' coordination on cybersecurity.
Rep. Michael McCaul (R-TX) said the U.S. should target the social media influence that the Islamic State uses to inspire domestic attacks.
An Ohio inmate was caught with administrative login credentials for the computer systems at Lebanon Correctional Intuition.
UCLA Health announced that attackers accessed parts of its network containing personal and medical information on as many as 4.5 million individuals.
Customer credit card information collected by an independent vendor may have been compromised.
An amendment to the Every Child Achieves Act takes on cybersecurity education in an effort to address worker shortage.
The updates address a denial-of-service vulnerability in Videoscape Distribution Suite for Internet Streaming and Videoscape Distribution Suite Service Broker.
Lauri Love, an Englishman accused of hacking into the U.S. Army, NASA and the Federal Reserve, was rearrested on Wednesday on an extradition warrant.
The U.S. Department of the Interior received an Inspector General report that pointed out nearly 3,000 vulnerabilities in its system.
A recently patched vulnerability in Siemens energy automation systems could have allowed an attacker to gain unauthorized control of the device.
Members of the forums, which were still down on Thursday, will be required to change their password when the site reopens.
The Army National Guard said a data breach that may have impacted more than 850,000 current and former members.
Payment cards used at certain Hershey Entertainment & Resorts Company properties between Feb. 14 and June 2 may have been compromised.
University of Pittsburgh Medical Center (UPMC) Health Plan announced its third breach in two years, information of 722 patients compromised.
Nearly seven percent of the U.S. population was impacted in the OPM data breaches, and nine legislators are now calling for lifetime identity theft protection for them.
A diplomatic agreement that restricts Iran's nuclear program, may indirectly shift its focus towards cyber warfare efforts.
A Vietnamese man was sentenced to 13 years in a U.S. prison for stealing and selling the personal information for identify theft.
The data on the USB stick is from 2008 or earlier, and is part of the same theft of data that was reported last year.
Walmart Canada has taken down its online photo site and is investigating a compromise that may have impacted 60,000 people.
Google Capital funded Crowdstrike during a funding round, and also granted Carnegie Mellon University $500,000.
United Airlines paid a security researcher one million air miles for finding vulnerability and submitting it to the airline's bug bounty program.
As the city's first CTO, Minerva Tantoco wants tech to solve some of the city's pressing issues, including what to do with old phone booths.
A Canadian federal court will allow students more options to pursue damages in a class action lawsuit against the government.
Instead of jail time, Seth Nolan McDonagh, a.k.a. Narko, was sentenced to 240 hours of community service for his part in one of the the biggest cyber attacks in history.
A NYC private investigator who was convicted of hiring hackers to assist in his work now fears retaliation from his clients after collaborating with authorities.
According to ESET researchers, APT28 started using the Flash exploit on Wednesday, the same day Adobe released a patch for the issue.
OPM Director Katherine Archuleta resigned from her post following the release of details about the agency's second data breach.
TerraCom and Yourtel America have been ordered to pay a $3.5 million in civil penalties to the FCC for failing to adequately store customer data.
VMware Workstation, VMware Player and VMware Horizon View Client for Windows have received updates that address the vulnerability.
OPM released the details of its second data breach on Thursday and said personal information, SSNs and fingerprints were all stolen.
Seven out of 104 teams have made it into the 2016 DARPA Cyber Grand Challenge Final Competition to be held August 2016 in Las Vegas.
Although a report indicated that a German missile system was taken over by hackers, a military spokesperson denied the claims.
As promised earlier this week, the patch addresses a high severity bug impacting several OpenSSL versions.
FBI Director James Comey brought his case against encryption to the Senate Judiciary Committee on Wednesday and said it hampers terrorism investigations.
End users in the education sector are twice as likely to be impacted by spyware and adware, and are equally as likely to visit malicious websites
United Airlines flights were temporarily grounded Wednesday morning due to a glitch in the computer software that manages automated operations.
Charles Evens, 26, who hacked into victims' Gmail accounts to obtain nude photos for a revenge porn website, pleaded guilty last week.
While James Comey continues to argue that encryption will harm Americans, a group of security experts, including Susan Landau and Bruce Schneier, released a paper on Tuesday saying otherwise.
OpenSSL announced that it will release updates to patch a "high severity vulnerability" on Thursday, July 9.
The Electronic Frontier Foundation (EFF) has announced its first DEF CON 23 Badge Hack Contest.
An investigation into the compromising of Japan's national pension system found that 99 percent of the accessed files were without any sort of password protection.
Masoud Biglarian, head of the CERT Coordination Center, said Iran shored up its security to protect against Dino spyware.
Federal investigators have recommended charges be brought against at least one Cardinals employee for the Astros cyber attack.
From June 8 through June 26 more than 100 organizations participated in the fourth annual Cyber Guard exercise.
The Federal Trade Commission will share lessons learned from the 54 data security cases it has brought as part of its "Start With Security" program.
Vague language in a new Chinese security law has multinational tech firms concerned that China may use it to force them to build backdoors or provide encryption keys and source code.
Researchers have seen an uptick in TorrentLocker infections in the U.K. and Turkey.
MasterCard has announced that it will begin using facial recognition and other biometric measures to verify payments in an effort to replace passwords.
A magnetic stripe skimming device had been placed on the ATM vestibule door at a Santander Bank location in Woburn, Mass.
A surveillance court judge ruled Monday that the NSA could temporarily resume its bulk data collection program during the transition period to the reforms of the USA Freedom Act signed into law June 2.
According to a statement, Trump Hotel Collection has been alerted to potential suspicious credit card activity and is determining if it involves any of its properties.
JPMorgan Chase reassigned the executive in charge of network security a year after he was criticized for his handling of a major data breach.
GoPro Studio sends update requests and receives updates over unencrypted connections leaving users vulnerable to attack.
The attacks reportedly date back a year, and happened as recently as Tuesday morning.
The acquisition is expected to close in the first quarter of the fiscal year 2016.
Eric Saldarriaga was sentenced to three months in prison after he hired hackers to access victims' email accounts.
The U.S. Government Accountability Office identified nine new deficiencies in the Department of Treasury's Bureau of Fiscal Service's information systems.
Recognizing the increased risk of breach from the interconnectedness of healthcare systems, some healthcare organizations will require third parties to obtain CSF certification.
An ATF official is under investigation by the DOJ for allegedly improperly accessing and downloading ATF employee data.
Europol, Ameripol and Interpol collaborated to arrest 130 individuals across 49 countries between June 16 and 17 as part of a global initiative targeting criminals using stolen credit card information to purchase airline tickets,
An FAA advisory committee aims to develop international design and testing standards that will thwart cyberattacks, a Wall Street Journal report reveals.
Apple announced that the iOS 9 will block advertisers and other companies from scanning devices for app-download data.
The company in question, Advanced Tech Support, was previously sued by the FTC during a 2014 tech support scam investigation.
Damballa announced the promotion of Stephen Newman to chief technology officer.
Application security firm Checkmarx announced on Thursday it received an $84M investment from Insight Venture Partners.
A panel at the SINET Innovation Summit agreed that while threats aren't more advanced they are persistent.
Access was gained to Clarksville Town Court classified records on June 23, potentially compromising information such as Social Security numbers.
Alex Stamos, who was appointed CISO at Yahoo last year, will join Facebook as CSO next Monday.
The theme park is working with an external computer security firm to investigate its system for signs of an issue.
Dakin was a graduate of the United States Military Academy at West Point before going on to start Coalfire as a three-person operation in 2001.
Sign up to our newsletters
SC Magazine Articles
- Zero-day in Fiat Chrysler feature allows remote control of vehicles
- 'GSMem' malware designed to infiltrate air-gapped computers, steal data
- All smartwatches are vulnerable to attack, finds study
- Apple App Store and iTunes buyers hit by zero-day
- Hacking Team issues new statement while researcher clears up Android tool confusion
- United reportedly hacked by same group that breached Anthem, OPM
- HAMMERTOSS malware represents culmination of 'best practices' for cyber attackers
- Hundreds of Massachusetts General Hospital patients notified of data incident
- Majority of Android devices vulnerable to denial-of-service bug
- Security concerns raised at Windows 10 roll-out