The financial industry's forum for collaboration on critical security threats was compromised with an unsophisticated phish.

This week in IoT, a supposedly bulletproof standard is shown to be not so sturdy, while Mobile World Congress proved that the technology is still a darling for many.

Scherig alarm offers security alarm, ip & network security camera and infrared night vision camera in Kansas city on very less price and high quality products.

The amount of money lost to fraud increased 7% last year.

Kudelski Security and X-41 D-Sec have published application-level security audits of Wire’s iOS, Android, web application, and calling…

During the development of our new security SaaS, allowing anyone to check the security level of its own servers, we ran tests on one of our own websites. Since the website is hosted by one of the biggest hosting provider in Switzerland, we didn’t expect to…

I have a weird requirement. The API endpoint will be accessed by the embedded javanoscript widget. Anything that is part of the embedded javanoscript is public. So, just using an API key (like JWT) is ...

Facebook has implemented HSTS preloading that instructs a browser to always use SSL/TLS to communicate with eligible websites.

The penetration testing and security auditing platform called Kali Linux is now available in the Windows 10 Store as a Linux environment that can be used in the Windows Subsystem for Linux. The problem is someone forgot one little thing. Some of its most…

Hackers hit more websites with record-breaking largest amplification DDoS attack of 1.7 Tbps using misconfigured Memcached UDP servers.

A Complete Beginner Guide to Learn Ethical Hacking ! #ethicalhacking #cybersecurity #sponsored https://t.co/S7i6Xwwjw4

Phishing once again makes the Internal Revenue Service's annual list of Dirty Dozen Tax Scams. When it comes to tax scams, the late and loquacious MLB Hall-of-Famer Yogi Berra nailed it: "It's like déjà vu all over again." The Internal Revenue Service's 2018…

1 points and 0 comments so far on reddit

Adrian Giordani reports on recent vulnerabilities found in many modern CPUs

Are memcached attacks, like the recent DDoS on GitHub, going to be more popular in the coming year? Where are their resources on memcached...

If you are IT or near the security world you probably have heard the term SOC (pronounced SOCK). SOC stands for Security Operations Center. What is a SOC and how does it differ from your security team? This episode goes into what a SOC is for, responsibilities…

When they say ‘No Logging’, do they really keep nothing? Would their upstream providers/IP transit keep logs as a way around this? How does this...

Security researchers have spotted the first cryptocurrency miner that includes a "kill list" feature that shuts down the processes of other coinminers in an attempt to hog the infected computer's mining power only for itself.

We reported an overflow vulnerability in the base64 decode function of Exim on 5 February, 2018, identified as CVE-2018-6789. This bug exists since the first commit of exim, hence ALL versions are affected. According to our research, it can be leveraged to…