Cylance researchers say a core router was compromised in cyberattacks against energy, nuclear, commercial facilities, water, aviation, and critical manufacturing sectors that the U.S. has accused Russia of carrying out. Cylance researchers said the discovery’s significance far outweighs its size,

MOST OF THE traffic on the web is encrypted. And more websites are adopting basic encryption measures every day. That means that, in theory, eavesdroppers have a hard time seeing whom you’re writing to on Gmail or what you’re looking

Amidst a major rise in zero-day malware attacks in Q4 2017, researchers have observed how hackers are increasingly using Microsoft Office documents as carriers to deliver malicious payloads in enterprise systems. Amidst a major rise in zero-day malware attacks in

Microsoft has issued an update that will fix a flaw, CVE-2018-1038, found in a previous patch that was issued to protect Windows 7 x64 or Windows Server 2008 R2 x64 systems from the Meltdown vulnerability. The company said that when

In a stereotypical scene from the Middle Ages, marauding hordes would lay siege to a castle, braving trebuchets and boiling oil from the defenders in a war of attrition. But what if instead sleeping guards missed something fundamental, like forgetting

Prevoty is cited as the leader of runtime application self-protection (RASP) technologies in The Forrester New Wave™: Runtime Application Self-Protection, Q1 2018, released today. Analysts from the influential research and advisory firm evaluated the eight most significant RASP vendors, interviewed

Drupal developers are being asked to give themselves extra time next week to fix a “highly critical” flaw in Drupal 7 and 8 core. In an advisory sent to developers on Wednesday, Drupal notified them that, “there will be a

The city of Atlanta is currently being targeted in a ransomware attack impacting several of its departments and crippling government websites that process payments and relay court information. The city, which is the ninth-largest metro area in the U.S., said

A recently observed variant of the TrickBot banking Trojan has added a new module that can lock a victim’s computer for extortion purposes, Webroot reports. First observed in late 2016 and said to be the work of cybercriminals behind the

RSA Conference 2018

RSA Conference 2018 Asia Pacific & Japan is the leading information security event in the region. And with good reason. Join the three full days of industry know-how, unbeatable content and invaluable networking opportunities. Tap into a smart, forward-thinking global

Russian hackers are conducting a broad assault on the U.S. electric grid, water processing plants, air transportation facilities and other targets in rolling attacks on some of the country’s most sensitive infrastructure, U.S. government officials said Thursday. The announcement was

If you’re a Linux administrator and looking to lock down your Linux servers and desktops as tight as possible, you owe it to yourself to make use of two-factor authentication. This should be considered as “no-brainer” as they come. Why?

Researchers found critical vulnerabilities in three popular VPN services that could leak users’ real IP addresses and other sensitive data. VPN, or Virtual Private Network, is a great way to protect your daily online activities that work by encrypting your

BJC HealthCare in the US said a data storage error potentially compromised 33,420 patient records when the information was accidentally made publicly available for nine months. BJC, based in St. Louis, said in a statement that a misconfigured server was

As enterprises continue to move more workloads to the cloud, they need to pay special attention to the effects that cloud migrations will have on their business-critical ERP systems. That’s a core conclusion of a recent research paper, The State

Two days ago, Microsoft encountered a rapidly spreading cryptocurrency-mining malware that infected almost 500,000 computers within just 12 hours and successfully blocked it to a large extent. Dubbed Dofoil, aka Smoke Loader, the malware was found dropping a cryptocurrency miner