Czech security software firm Avast Software has patched a severe vulnerability in its SafeZone web browser that if exploited could have granted hackers sweeping access to compromised computers.
The CERT Division at Carnegie Mellon University yesterday issued an alert detailing a password vulnerability in the Open Embedded Linux Entertainment Center operating system.
Ransomware is a complex threat, but its impact can be lessened, says Thomas Gresham.
American consumers are more preoccupied with data privacy than losing their main source of income with 92 percent of respondents in a new survey.
Hackers in India are being handsomely rewarded for taking on work for ISIS.
Symantec researchers have observed one-click fraud scammers changing to more aggressive tactics in a zero-click fraud scheme that subscribes visitors to porn websites.
Symantec reported the worldwide infection of 3,500 public servers with a malicious script that redirects its victims to other compromised websites and said it believes could be part of a recon effort for future attacks.
File it under "irony" or "misguided," but executives at some of the world's largest IT security companies willingly gave up Twitter passwords while registering for a security event.
The Irish National Lottery website and ticket machines operations have been disrupted by a cyber-attack.
A number of remote code execution bugs in several models of FRITZ!Box broadband routers could allow intruders to place phone calls through the device.
A former director of baseball development for the St. Louis Cardinals pleaded guilty to charges of accessing computers belonging to the Houston Astros without authorization.
Steam confirmed that a midday denial-of-service attack on Christmas likely exposed the personal information of 34,000 users via store page requests.
The Tor Project will team with HackerOne to launch a bug bounty program in 2016, Mike Perry, lead developer of the Tor Browser and Tor Performance developer, said during the State of the Onion address.
The security experts from ESET who report at We Live Security (WLS) took out their crystal ball and predicted the following cybercrime trends for the coming year.
Google beta testers are logging on without passwords, utilizing a new method that authenticates by responding to a notification sent to a smartphone.
Twitter has announced its stance on SHA-1 migration. In a blog post published Tuesday evening, Twitter's trust and information security officer Michael Coates announced support for a "certification switching" proposal offered by Facebook and web security firm CloudFare.
The Tor Project is embarking on a crowdfunding campaign through Dec. 31 to help raise awareness, educate and finance the anonymous web browser's operations.
Two more individuals were suspended from the staff of presidential candidate Bernie Sanders for inappropriate access to Hillary Clinton's voter database.
Passwords have been reset for a number of Gyft users as a precaution after account data was reported for sale.
Five men were arrested by Kripos, Norway's national criminal justice investigation service, for using and selling malware, in particular a remote access Trojan (RAT).
Microsoft has been forced to update its Certificate Trust list (CTL) for all supported releases of Microsoft Windows after it had inadvertently leaked private security keys for its xboxlive.com domain.
Two unusual DDoS attacks targeted several of the the internet's root name severs.
A recent study by Veracode shows four of five applications written using PHP, Classic ASP and Cold Fusion will fail an Open Web Application Security Project Top 10 test.
The website of Japan's Prime Minister Shinzo Abe was rendered inaccessible on Thursday owing to a DDoS attack.
Join for a special online discussion with Chief Technology Officer, Amrit Williams and CMO Mitch Bishop as they discuss what are expected to be some of the most pressing security issues in 2016, and advice on how to plan ahead.
A new report from Trend Micro has suggested that 6.1 million apps for smart TVs and remote controls could be vulnerable to remote code execution attacks.
I enjoy following darknet.org.uk because they come up with some great proof of concept projects. Twittor is one of those.
Researchers at Malwarebytes spotted a malvertising attack targeting the popular video-sharing site DailyMotion.
A new barrage of ransomware, capable of siphoning off digital wallets from Windows users, has been detected.
In this webcast, LogRhythm and Cisco will share some of the latest techniques used by attackers to penetrate networks.
Sign up to our newsletters
SC Magazine Articles
- CISO salaries and demand for cyber-skills skyrockets, surprising no-one
- Skype targeted by T9000 backdoor trojan
- Student SSNs exposed in University of Central Florida breach
- Malwarebytes says sorry for multiple AV bugs, still unpatched
- Ransomware and POS attackers to zero in on small businesses, retailers
- Obama goes hard on cybersecurity, new CNAP commits funds, resources
- NSA reorg could strengthen defense ops
- Pro-Palestine hacktivist makes good on threat, posts data on FBI and DHS personnel
- Microsoft's February Patch Tuesday: 13 bulletins addressing 36 vulnerabilities
- Draft Investigatory Powers Bill draws fire from Parliamentary committee