darkreading

Brand loyalty can act as a shield protecting organizations from the immediate impact of a breach, but that protection has a shelf life.

High turnover, burnout, and blame-heavy environments do more than hurt morale. They also weaken security and put the organization at risk.

With Version 3, would-be phishers can cut and paste a big brand's URL into a template and let automation do the rest.

The continent faces "relentless" military espionage, and increased cyber sabotage at the hands of authoritarian regimes, according to a high-ranking intelligence director.

The startup incubator and PR firm with holdings in more than 70 cybersecurity firms has announced a data breach with as-yet-unknown effects.

These sorts of attacks reveal growing adversary interest in secure messaging apps used by high-value targets for communication, Google says.

While AI-generation services and major camera makers are adopting the specification for digitally signed metadata, creating a workflow around the nascent ecosystem is still a challenge.

The authentication bypass vulnerability in the OS for the company's firewall devices is under increasing attack and being chained with other bugs, making it imperative for organizations to mitigate the issue ASAP.

By taking several proactive steps, boards can improve their organization's resilience against cyberattacks and protect their critical OT assets.

The campaign heavily uses Dropbox folders and PowerShell scripts to evade detection and quickly scrapped infrastructure components after researchers began poking around.

Acquisition strengthens Deepwatch Platform capabilities with actionable insights and risk-based prioritization.

Attackers are using patched bugs to potentially gain unfettered access to an organization's Windows environment under certain conditions.

Winnti once used a variety of malware but is now focused on SQL vulnerabilities and obfuscation, updated encryption, and new evasion methods to gain access.

Microsoft is warning the modular and potentially wormable Apple-focused infostealer boasts new capabilities for obfuscation, persistence, and infection, and could lead to a supply chain attack.

Credible Security's founders bring their varied experiences to help growing companies turn trust into a strategic advantage.

Companies pursing internal AI development using models from Hugging Face and other open source repositories need to focus on supply chain security and checking for vulnerabilities.