Researchers with Cisco Talos are tracking a highly disturbing state-sponsored Domain Name System (DNS) hijacking campaign dubbed ‘Sea Turtle’ that has already targeted around 40 organizations across 13 countries, including government agencies and energy companies. Most targets are located in the Middle East and Northern Africa. The attack has the

A Wednesday report by Terbium Labs highlights the growing underground market for instruction manuals that teach people how to commit a wide variety of cybercrimes. The security researchers analyzed a staggering 30,000 “fraud guides,” which provided them with important insights into how cybercriminals think and operate. Email addresses are discussed

New research by Absolute indicates that on average, 2% of endpoint security tools within organizations fail each week and that all such solutions eventually fall short, leaving companies exposed to threats. More and more organizations are finally abandoning the traditional focus on security at the perimeter in favor of a

A new Distil Networks report highlights the threat of malicious bots. The good news is that websites are receiving less automated traffic than in previous years, with 62% of web traffic in 2018 representing human activity, an improvement over 2017 when the number was 55%. However, bots are becoming more

On Wednesday, a new chapter was added to the seemingly never-ending story of Facebook privacy snafus when the social media giant admitted that the email contacts of up to 1.5 millions users were “unintentionally uploaded to Facebook when they created their account.” Ironically, the discovery was made when the company

Anyone looking for proof that ransomware is a threat to any and every organization needs to look no further than the latest news regarding US cybersecurity firm Verint, because the company’s Israeli offices where the target of a ransomware attack earlier this week. That’s right, threat actors actually went after

Various reports suggest that Indian IT outsourcing and consulting services giant Wipro has experienced a significant breach affecting some of the companies it provides services to. Krebs On Security first reported the breach, based on accounts from various sources claiming that state-backed hackers had been lurking on Wipro’s network for

Researchers with Bitdefender are tracking a new sophisticated rootkit-based malware dubbed “Scranos” that is targeting systems in order to steal data. When Scranos was detected in December of 2018, it mainly went after targets in China and other Asian countries. However, the campaign began to spread globally at the end

PhishLabs’ latest annual report on phishing trends shows that the vast majority of phishing campaigns (84%) targeted US organizations in 2018. In 2017 the number was slightly higher (85%). However, the overall number of phishing attacks increased by a whopping 40,9% between 2017 and 2018. Organizations in the financial sector

New research by Outpost 24 exposes serious shortcomings in application security practices. Almost one-fourth (23%) of organizations do not test the security of applications before launching them. Moreover, 31% of firms have tried to gain a competitive advantage by launching one or more applications despite being aware that the product(s)