A former Apple employee arrested last weekend in the Mineta San Jose International Airport for nicked information on the company's autonomous car project presumably to pass along to a Chinese startup.
Intruders who infiltrated Timehop's cloud infrastructure came in through an admin account not protected with two-factor authentication and exfiltrated access keys removed more data than originally believed.
Dan Cole, director of product management at ThreatConnect evaluating threat intelligence platforms (TIPs), comparing open-source and proprietary solutions,
A new BankBot Anubis campaign targeting Turkish mobile users emerged last month, as attackers managed to infiltrate the Google Play store with at least 10 fake apps that actually download the Android banking trojan.
Timehop has deauthorised all 21 million of its user accounts after hackers intruders infiltrated its cloud infrastructure on 19 December, 2017, through a poorly protected admin account pilfered information.
Today BAE Systems launched what it describes as 'The Intelligence Network' with the laudable aim of creating a safer society in the digital world.
The Hide 'N Seek botnet that was targeting IoT devices has now expanded its range of targets to focus on cross-platform databases.
A one-time employee of NSO Group, the Israeli cyber-espionage firm famous for developing Pegasus spy software for mobile devices, has reportedly been indicted on charges of stealing company secrets.
The Stylish app, once the browser extension darling of web users looking to hide distractions and gussy up webpages, has been turned into what a software engineer calls a "covert surveillance tool,".
Dating agencies are now getting intelligence on known scammers direct from police forces to help prevent them registering on dating apps and websites.
Estonian Minister of Entrepreneurship and Information Technology Urve Palo announces plans for the country to spend €117.5 million on developing cyber-security and e-state solutions over the next 4 years.
Search giant responds to allegations that third-party developers have detailed access to Gmail user's data.
Data that National Health Service patients in the UK specifically requested be kept private was inadvertently used in a clinical audit and research project.
With up to US $143 billion annual expenditure to stem losses of US $6 trillion by 2021, SC Media UK's quick reference guide looks at the cyber-security market's direction and its main players.
Artificial Intelligence is the biggest issue for cyber-security, High-Tech Bridge founder and CEO Ilia Kolochenko told SC Media during a summit conference in Geneva earlier this year.
Reset 2018, held in central London yesterday, is a cyber-security conference with a difference, comprising insights from 15 female experts in cyber-security explaining the evolving cyber-threat landscape.
Facebook announced more API platform updates following the Cambridge Analytica scandal which resulted in the misuse of the information from 120 million users.
Israeli Minister of Justice Ayelet Shaked: The international community must ensure that global companies and Internet giants like Facebook, Twitter or Google are held accountable for the irresponsible handling of users personal data.
After what it called "a comprehensive review" of its location aggregator program, Verizon said it will terminate existing location data sharing agreements with third-party brokers, a pledge echoed by AT&T.
Security researchers have discovered a new spam email campaign using a novel approach to infect victims. Users tricked into downloading and executing malicious script via Excel.
A cyber-disaster plan must not only be designed to keep an organisation or business functioning in the wake of a cyber-attack, but it also must be practiced regularly in order to be fully effective.
Research finds that unsecured servers should not have been connected to the internet. Three-quarters of open Redis servers are infected with malware, according to new research.
Newly published research suggests 27 percent of enterprise security teams see more than 1 million alerts per day, and more than half of IT professionals admit they are struggling to identify critical incidents and false positives alike.
A newly discovered banking malware that's been actively targeting Brazilians behaves as a remote access trojan (RAT) and uses a Microsoft SQL Server database server as an unconventional command-and-control infrastructure.
A new banking malware called BackSwap has replaced tricky conventional browser injections with a simpler browser manipulation technique that can URLs for banking activity by hooking key window message loop events.
Banking hacking group Cobalt continues to operate despite the arrest of a leading figure recently, according to researchers.
A glitch in T-Mobile's website allowed anyone to look up customer details including full names, postal addresses, billing account numbers, and in some cases information about tax identification numbers.
Schneider Electric patched a vulnerability (CVE-2018-7783) in its SoMachine Basic that could result in the disclosure or retrieval of data during an out-of-band attack.
Business email compromise still most popular and most effective attack vector. The bulk of email fraud gangs still operate out of Nigeria, according to new research.
Greenwich University has been fined £120,000 after a security breach at the university resulted in the leak of 19,500 students' data to the internet, according to Signavio.
A pair of Trend Micro research teams has detected and done a quick cyber-autopsy on a new Mirai-like attack that popped up in Mexico earlier this month targeting GPON home routers and IP webcams.
New Spectre-style vulnerability affecting Intel chips uncovered by bug bounty programme. Intel has confirmed a new exploit - titled Variant 4 - that uses speculative execution, to potentially expose data through a side channel.
In June last year, a report from EfficientIP revealed that 76 percent of organisations around the world suffered DNS-based attacks and almost a third of UK organisations experienced data exfiltration via DNS.
Expenditure on cyber-security in the five years to 2021 will exceed US$1 trillion; losses from cyber-crime reach US$6 trillion annually; top 500 cyber-security companies list published.
Mexican authorities are investigating suspects for a bank hack that siphoned hundreds of millions of pesos out of at least five banks.
While individuals and businesses across the world have embraced cryptocurrencies due to the various benefits they come with, the concept has also attracted the attention of cyber-criminals.
A research firm has identified groups associated with Chinese state intelligence as the malicious actors behind a long-running and previously unreported operation by the Winnti umbrella group.
A cyber-espionage operation targeting Android users in the Middle East has been exfiltrating the data of unsuspecting users since June 2015.
In the past couple of years, while we have seen a rise in businesses adopting new cyber-security policies, such measures have not been able to curb the rise of malicious malware and cyber-weapons used against healthcare.
City of London Police recently launched a new initiative to offer threat briefings, incident response training, and other guidance to businesses located in London's Square Mile to help them secure themselves better from cyber-threats.
The Queen's Bench Division of The High Court of Justice ruled that a key part of the 2016 Investigatory Powers Act, which would force broadband ISPs to log the internet activity of all their customers for up to 12 months, is unlawful.
Unable to withstand the months-long scandal over its collection of data from millions of unsuspecting Facebook users, Cambridge Analytica, closed its doors yesterday, filing for bankruptcy.
New research has revealed that even though people are now more aware of security best practices than in the past, their password management has remained largely unchanged.
If you own or work at a small business and your firm is a data processor or data controller of private data belonging to European Union citizens, your company will be subject to the General Data Protection Regulation (GDPR).
Fitbit and Google have inked a deal that will have the fitness device vendor upload data to Google's Cloud Healthcare API so it can be made accessible by healthcare providers.
The massive data breach that compromised the data of 147.9 million Equifax customers last year has cost the company more than £175 million in related expenses.
NTT Security 2018 Global Threat Intelligence Report (GTIR): Ransomware up 350% and spyware ranks first in volume of malware at 26% reflecting attackers' desire for long-term presence for information.
In a month from now, the UK will welcome GDPR which will give the ICO more powers to defend consumer interests and issue fines of up to £17 million or four percent of global turnover on organisations in the event of data breaches.
75 percent of online banking systems contained cross-site scripting flaws, 69 percent lacked protection from data interception, 63 percent had insufficient authorisation, 50 percent were vulnerable to sensitive data disclosure.
Twitter Friday banned Kaspersky Lab ads, pointing to misaligned business practices and what the US government has said is Kaspersky's relationship to Russian intelligence, claims that repeatedly have been denied by the firm.
Every vendor is pushing a threat intelligence feed, program, and/or product. How does a lean organisation separate the hype from the actual value?
Brought to you in partnership with Mimecast
Phishing has been around almost as long as the internet, but its still going strong and getting more sophisticated. Why? Because it works.
Brought to you in partnership with Cofense