No, nothing to do with drive-by downloads… Our colleagues in Europe came up with a nice idea: an article on the dangers...
We know that spam works: well, it works well enough for spammers to keep devoting time and money into pumping sewage into...
The results (released yesterday) from a study conducted by the Ponemon Institute yielded some interesting data points. The most visible of these...
I recently read an article about Facebook security problems at http://www.securitymattersmag.com/security-matters-magazine-article-detail.php?id=411 in which some advice on passwords was given. Some of the...
The news broke a short time ago that pop star Michael Jackson died of a heart attack. It is all too predictable...
The City of Bozeman, Montana effectively joined the ranks of phishers when they asked job candidates for their usernames and passwords for...
When I first went to university at the end of the 1960s (yes, I really am that old, though not quite old...
Just last Saturday, June 6th; there was a new posting on the Full Disclosure mailing list from a source that calls themselves...
Some of you may have recently read of researchers discovering a botnet that is using Mac computers. Are you surprised? Well, perhaps...
We all have recently endured a week or so of extensive media hype about a worm called “Conficker”. Phrases such as “One...
When I write about Mac issues, I usually find myself abused by individuals convinced that there are no Mac viruses, never were...
I’ve mentioned here before that targeted malware, often delivered by “spear phishing” carried by apparently “harmless” documents such as PDFs, .DOCs and...
I just picked up a comment made today on a post Randy made about the comparative security of Macs and PCs. Since...
Someone raised an interesting point in a comment to yesterday’s blog about Symantec’s own PIFTS.EXE being flagged by their own firewall as...
I recently had the fantastic opportunity to participate on a panel discussion concerning cyber security. The event was hosted by the Bellevue...
As Valentine’s Day is approaching the criminals behind Win32/Waledac have increased their activity. The Valentine campaign started some time ago but the...
Back in January I blogged about a shortcoming of HIPAA. HIPAA legislation is, in part, supposed to help protect our privacy when...
Here at ESET we have just released our Global ThreatTrends report for January 2009. Not surprisingly, at the top of the list...
Well, this actually isn’t a lie, but a lot of what you read on the web are lies designed to steal money...
…no promise of chicks for free, but I did get spam this morning offering me a “Free-Trial kit” for some scheme for...
Millions of Malicious ‘Imageless’ Containers Planted on Docker Hub Over 5 Years
New U.K. Law Bans Default Passwords on Smart Devices Starting April 2024
Google Prevented 2.28 Million Malicious Apps from Reaching Play Store in 2023
Sandbox Escape Vulnerabilities in Judge0 Expose Systems to Complete Takeover
Okta Warns of Unprecedented Surge in Proxy-Driven Credential Stuffing Attacks
Ukraine Targeted in Cyberattack Exploiting 7-Year-Old Microsoft Office Flaw
Bogus npm Packages Used to Trick Software Developers into Installing Malware
New ‘Brokewell’ Android Malware Spread Through Fake Browser Updates
Hackers Exploiting WP-Automatic Plugin Bug to Create Admin Accounts on WordPress Sites
North Korea’s Lazarus Group Deploys New Kaolin RAT via Fake Job Lures
Network Threats: A Step-by-Step Attack Demonstration
State-Sponsored Hackers Exploit Two Cisco Zero-Day Vulnerabilities for Espionage
U.S. Treasury Sanctions Iranian Firms and Individuals Tied to Cyber Attacks
Researchers Detail Multistage Attack Hijacking Systems with SSLoad, Cobalt Strike
eScan Antivirus Update Mechanism Exploited to Spread Backdoors and Miners
CoralRaider Malware Campaign Exploits CDN Cache to Spread Info-Stealers
Apache Cordova App Harness Targeted in Dependency Confusion Attack
Unmasking the True Cost of Cyberattacks: Beyond Ransom and Recovery
Russia’s APT28 Exploited Windows Print Spooler Flaw to Deploy ‘GooseEgg’ Malware
ToddyCat Hacker Group Uses Advanced Tools for Industrial-Scale Data Theft