Attacks/Breaches

Organizations that don't implement end-to-end HTTP/2 are vulnerable to attacks that redirect users to malicious sites an...

"We can't do this alone," the new CISA director told attendees in a keynote at Black Hat USA today.

Mandiant experts discuss the novel techniques used to evade detection, automate data theft, and achieve persistent acces...

The group target unpatched Oracle WebLogic servers to gain access that they later hand off to third parties who deploy r...

Like other protective measures, multifactor authentication isn't failsafe or foolproof.

The venture capital firm believes the attack affected personal data belonging to individual investors in ATV funds.

In his keynote address at Black Hat USA on Wednesday, Matt Tait, chief operating officer at Corellium, called for softwa...

An increase in global cyberattacks was driven by Web shell activity, targeted ransomware and extortion operations, and s...

The lesson: Don't assume that everything coming from an apparently benign source is safe.

Industrial control systems attacks are happening with more frequency, but they are hardly new.

An information stealer disguised as pirated software targets cryptocurrencies and data while dropping malicious content ...

Ransomware's evolving all the time, but here are some issues to address now to mitigate the impact of the next ransomwar...

The flourishing market for initial access to companies' networks highlights how cybercriminal groups continue to special...

A new report states sophisticated attacks and a complex threat landscape lead to burnout among security pros.

'PwnedPiper' flaws could allow attackers to disrupt delivery of lab samples, or steal hospital employee credentials, new...