The number of new security vulnerabilities affecting Microsoft products increased last year compared to 2017, and has more than doubled since 2013, a new BeyondTrust report shows. While the number of critical vulnerabilities declined based on the number for 2017, critical flaws have generally increased by 30% over the last

A new report by Trustwave sheds light on how cybercriminals continue to shift tactics to increase the success rate of their attacks. When it comes to spam, the report shows that campaigns aiming to distribute malware are on the decline, while other malicious spam campaigns, such as those involving sextortion

Unmasking Maskirovka: Russia’s Cyber Influence Operations examines Russian ‘Information Operations’ (InfoOps) as a tool of strategic influence.  This exploration is timely and relevant given the Russian assault on the American electoral process in the 2016 Presidential election—especially since the long-range implications are still being assessed.

A new Glasswall survey shows that while many security leaders depend on staff to keep the company safe, they are very worried about how those same employees may actually pose a threat to the firm. 40% of senior security professionals fully rely on staff as the last line of defense

A recent audit by the Treasury Inspector General for Tax Administration (TIGTA) concluded that many of the IRS’ web applications that people can use to pay taxes or access tax-related services are relying on outdated security controls. In order to properly secure taxpayers, the apps should incorporate the National Institute

Facebook expects that the Federal Trade Commission (FTC) may slap a fine of $3 to $5 billion on the social media giant once it wraps up its investigation into the company’s data protection and privacy practices. Facebook has already reserved $3 billion to pay potential fines. While the FTC investigation

In a surprising turn of events, the US National Security Agency (NSA) has advised the Trump administration to abolish its controversial surveillance program for domestic calls and text messages. The program was established in 2001 under the Patriot Act to collect metadata on electric communications that could in theory make

Organizations are increasingly aware that their employees represent both their biggest asset and a serious security risk. Consequently, 92% of IT leaders believe that in order to protect data, their firms should invest in new solutions that allow them to monitor user activity and spot insider threats. Just under half

A new Neustar Research report shows that powerful DDoS attacks of over 100Gbps skyrocketed in the first quarter of this year. In comparison to Q1 of 2018, large DDoS attacks rose by 967%, with the biggest one peaking at 587Gbps, which was over 70% larger than the most powerful attack

A new report[pdf] by Hiscox looks at the cyber readiness of organizations in the US and various European countries. The study found that 61% of firms experienced a cyberattack in the past 12 months, which represents a serious increase over last year, when the number was 45%. According to the