Articles about Security

Following a series of privacy-related controversies, smart doorbell maker Ring is making two-factor authentication (2FA) mandatory on all of its devices. In addition, the company is also giving users more control over personalized advertising.

Ring also says that it is temporarily pausing the use of most third-party analytics services in its apps and on its website. The company is working on giving users the ability to limit the sharing of data with third parties.

Continue reading →

Concerns that quantum computing could place current encryption techniques at risk have been around for some time.

But now cybersecurity startup Active Cypher has built a password-hacking quantum computer to demonstrate that the dangers are very real.

Continue reading →

January's Global Threat Index from Check Point Research shows that Emotet remains the top threat for the fourth month in a row. But it’s now being spread by a spam campaign exploiting people's worries about the coronavirus.

The emails appear to be reporting where Coronavirus is spreading, or offering more information about the virus, encouraging the victim to open the attachments or click the links which, if opened, attempt to download Emotet on their computer. Emotet is primarily used as a distributor of ransomware or other malicious campaigns.

Continue reading →

Half of respondents to a new survey report that they have experienced a breach because one or more of their security tools wasn't working as expected.

The Security Operations Effectiveness survey from Keysight Technologies  questioned over 300 individuals involved in enterprise security solutions and found that only just over half (57 percent) of security professionals are confident their current security solutions are working as intended.

Continue reading →

For all of today's sophisticated technology, sometimes there's no substitute for the human touch when it comes to getting the job done and it seems this applies to fraud as much as legitimate business.

Online fraud prevention specialist Arkose Labs has released its latest Fraud and Abuse Report, which shows that human-driven attacks are up 90 percent in the last quarter of 2019 compared to the previous six months.

Continue reading →

Microsoft has released a series of patches for a zero-day vulnerability in Internet Explorer that was being actively exploited.

The remote code execution flaw was discovered a few weeks ago, and while 0patch released a micropatch to fix the problem, Microsoft only suggested a workaround which ended up breaking printing for many people. But now patches have been made available for Windows 7, Windows 8.x, Windows 10, Windows Server 2008 and Windows Server 2012.

Continue reading →

A new survey of more than 1,000 IT and IT security practitioners reveals that 51 percent now believe that automation will decrease headcount in the IT security function, an increase from 30 percent in last year's study.

The study by the Ponemon Institute, in partnership with DomainTools also finds concerns of employees about losing their jobs because of automation have increased to 37 percent over last year's 28 percent.

Continue reading →

A steady stream of data breaches has led most consumers to worry about the online crimes that lead to identity theft and account takeovers.

A new report from F-Secure shows almost nine out of 10 consumers are at least somewhat worried about their bank accounts being hacked to steal money (89 percent), online shopping fraud (87 percent), and someone committing a crime with their identity (87 percent).

Continue reading →

Enterprises are moving more of their workloads to the cloud in order to enhance their agility and responsiveness. But in the rush to develop new applications security can sometimes take a back seat.

Today Tufin is launching SecureCloud, a security policy automation service for enterprises that need to gain visibility and control over the security posture of their cloud-native and hybrid cloud environments.

Continue reading →

Predictive email defense company Vade Secure has released a new report ranking the top 25 brands most impersonated in phishing attacks.

The report covering the final quarter of 2019 shows PayPal is the top brand impersonated by cybercriminals for the second quarter in a row, with Facebook taking the number two spot and Microsoft coming in third.

Continue reading →

Data breaches and cyberattacks can be costly for businesses, not just in financial terms but also in damage to reputation.

It's not surprising then that more and more companies are looking to offset these costs by taking out cyber insurance policies, We spoke to Chris Kennedy, CISO and VP of customer success at AttackIQ to find out more about cyber insurance and the potential pitfalls.

Continue reading →

It's generally been accepted that Mac systems are much safer than Windows, but that could be starting to change as a new report shows Mac threats are growing faster than their Windows counterparts for the first time ever.

Malwarebytes latest annual State of Malware report shows an average of 11 threats per Mac endpoint in 2019 -- nearly double the average of 5.8 threats per endpoint on Windows. Overall Mac threats increased by more than 400 percent, year-on-year.

Continue reading →

The total number of records exposed by data breaches increased by 284 percent last year compared to 2018, with over 15.1 billion records exposed in total.

This is one of the findings of the 2019 Year End Data Breach QuickView Report from Risk Based Security although the total number of 2019 breaches disclosed so far (7,098) is up only one percent.

Continue reading →

DDoS attacks are a continuing problem for businesses and a new report reveals that they are also growing in complexity.

The 2019 DDoS report from Link11 reveals that the share of multivector attacks -- which target and misuse several protocols -- grew significantly from 46 percent in the first quarter to 65 percent in the fourth quarter.

Continue reading →

The US is currently considering new legislation that would require each state to appoint a cybersecurity leader.

The proposed Cybersecurity State Coordinator Act has cross-party support and would, say its backers, improve intelligence sharing between state and federal governments and speed up incident response times in the event of a cyberattack.

Continue reading →