Vulnerabilities/Threats

The memory corruption vulnerability in a policy component installed by default on most Linux distributions allows any user to become root. Researchers have already reproduced the exploit.

It's not just your imagination — malicious threats have exponentially increased organizational risk.

Europol and 10 nations seized servers and disconnected the anonymous network allegedly used by many cybercriminals in the latest effort to hobble cybercrime groups.

The incident response landscape has changed drastically, largely from shifting attitudes among insurance companies and, to some extent, business customers feeling the pain of security incidents.

Signs hint at Russia's APT28, aka Fancy Bear, being behind the attacks, according to new research.

In a recent performance test, cybersecurity provider Link11 was benchmarked against leading international security vendors and emerged as the winner. The study by Frost & Sullivan emphasized the importance of precise detection and speed in mitigating DDoS (Distributed Denial of Service) attacks.

Cloud security, API security, and incident response are among the issues up-and-coming security companies are working on.

Employees don't have to be paralyzed by fear to keep the company safe. They just have to understand what threats look like and how to stop them.

Variants of the Mirai codebase are still a popular way to compromise and subvert Internet of Things devices, but experts fear more serious threats may be ahead.

The authors of the infamous malware family have added measures for better protecting malicious code injections against inspection and research.

Recent "BadUSB" attacks serve as a reminder of the big damage that small devices can cause.

As hostilities mount between Russia and Ukraine, new and more dangerous cyberattacks are likely to develop. Pinpointing sources and motives will remain elusive, but enterprises should prepare for an escalation in cyberspace.

Threat actors from Eastern Europe seen expressing some concern about Russia being a safe place for them to continue operating, researchers say.

Implementing these and other security procedures will greatly improve the security posture of the United States and its private partners.

New Cybersecurity National Security Memorandum will let the spy agency "identify vulnerabilities, detect malicious threat activity and drive mitigations," agency cybersecurity director says.