Risk

A rising tide of threats — from API exploits to deepfakes to extortionary ransomware attacks — is threatening to overwhelm IT security teams.

For the right price, threat actors can get just about anything they want to launch a ransomware attack — even without technical skills or any previous experience.

A global network of inauthentic news sites present themselves as independent news outlets, offering content favoring China's government and articles critical of the US.

Copado's Kyle Tobener will discuss a three-pronged plan at Black Hat USA for addressing human weaknesses in cybersecurity with this medical concept — from phishing to shadow IT.

The new program offers robust protection across all five data risk categories: cyber, human, application, operation, and environmental.

Customers across several European countries are urged to update credentials in the wake of the attack that affected a gas-pipeline operator and power company.

The campaign uses four malicious packages to spread "Volt Stealer" and "Lofy Stealer" malware in the open source npm software package repository.

The peer-to-peer network IPFS offers an ingenious base for cyberattacks and is seeing a stratospheric increase in malicious hosting.

With Microsoft disabling Office macros by default, threat actors are increasingly using ISO, RAR, LNK, and similar files to deliver malware because they can get around Windows protections.

Ahead of their Black Hat USA talk in August, Simon Pavitt and Stephen Dewsnip explain the value of helping people practice cyber defense via a "malicious floorwalker" exercise.

Call it a "cyber tax": Those costs are usually passed on to consumers, not investors, as compromised businesses raise prices for goods and services.

IT admins can lock some of the obvious open doors in business applications, but system visibility is key. Build automatic monitoring defenses and adopt a Git-like tool so you can "version" your business apps to restore prior states.

Insiders could become more vulnerable to cybercrime recruitment efforts, new report says.

Trying to remediate everything was never a winning strategy. RBVM is an approach that gets organizations better results with less effort.

Security pros' experience with transparency and evaluating third-party partners positions them to act as key environmental, social, and governance advisers.