16.8 C

Are We Secure Yet? How to Build a ‘Post-Breach’ Culture

There are many ways to improve your organization's cybersecurity practices, but the most important principle is to start from the top. Read more

Threatpost Poll: Are Published PoC Exploits a Good or Bad Idea?

Are publicly released proof-of-concept exploits more helpful for system defenders -- or bad actors? Read more

Critical WordPress plugin flaw affects 320,000 websites

Two popular WordPress plugins contain major security flaws that left about 320,000 websites open to exploit. Read more

With International Tensions Flaring, Cyber-Risk Is Heating Up for All Businesses

Risks of nation-state attacks go beyond Iran, and the need for awareness and security don't stop at any national border. Read more

Here are the police charges filed in the great African IP address heist

MyBroadband has received confirmation from the Commissioner of Police in Mauritius that AFRINIC has reported a breach of the country’s Computer Misuse and Cybercrime Act. Read more

“Extraordinarily serious” Windows 10 security flaw – Update now

Microsoft has addressed a severe bug in Windows that allowed malicious parties to spoof security certificates - allowing these attackers to decrypt confidential information. Read more

‘Fancy Bear’ Targets Ukrainian Oil Firm Burisma in Phishing Attack

The oil & gas company is at the heart of the ongoing US presidential impeachment case. Read more

Processor Vulnerabilities Put Virtual Workloads at Risk

Meltdown, Spectre exploits will likely lead to customers making tradeoffs between performance and security of applications, especially virtual and cloud-based apps Read more

Texas School District Loses $2.3M to Phishing Attack

The Manor Independent School District is investigating a phishing email scam that led to three separate fraudulent transactions. Read more

Will This Be the Year of the Branded Cybercriminal?

Threat actors will continue to grow enterprise-style businesses that evolve just like their legitimate counterparts. Read more

Latest article

Framework Developer ‘Ragequits’ Open Source Community, Citing Negative Comments, ‘Very Few Provide Help’

The maintainer of the popular Rust web framework Actix has quit the project -- though he's backed off threats to make its code private...

EFF Defends Bruce Perens Victory Against ‘Open Source Security’ in Appeals Court

Bruce Perens (Slashdot reader #3872) co-founded the Open Source Initiative with Eric Raymond in 1998. (And then left it this January 2nd.) But in...

Realtek SDK Information Disclosure / Code Execution

Realtek SDK based routers suffer from information disclosure, incorrect access control, insecure password storage, code execution, and incorrectly implemented CAPTCHA vulnerabilities. Read more