For security reasons, you might need to create a Linux user without the ability to log in. Jack Wallen shows you how.

Much of the traffic egressing enterprise networks are from poorly protected Internet-connected consumer devices, a Zscaler study finds.

This line of thinking could get absurd, Indiana’s supreme court declared. How do you “steal” something if you don’t know who owns it?

Formerly preferred diplomatic app WhatsApp apparently isn’t up to snuff.

Research puts the emerging mobile threat—which monitors the whereabouts and device activity of devices users as well as collects personal data—into clearer focus.

Wondering how to change Netflix region to be able to stream your favourite shows while abroad or access more libraries? Read this article to find it

Encryption experts gave insights into the Crypto AG revelations, delved into complexities of the right to be forgotten, and more at RSA Conference.

Analysis of 92 billion rejected emails reveals a range of simple and complex attack techniques for the last quarter of 2019.

A connected, robotic vacuum cleaner has serious vulnerabilities that could allow remote hackers to view its video footage and launch denial of service attacks.

A new campaign is targeting governments with the ForeLord malware, which steals credentials.

Good security programs start with a mindset that it's not about the tools, it's what you do with them. Here's how to get out of a reactive fire-drill mode with vulnerability management.

Routers and devices with Broadcom and Cypress Wi-Fi chipsets could be forced to sometimes use encryption keys consisting of all zeroes. Now patched, the issue affected a billion devices, including those from Amazon, Apple, Google, and Samsung.

Researchers have found a way to impersonate mobile devices on 4G and 5G mobile networks, and are calling on operators and standards bodies to fix the flaw that caused it.

A developer has discovered that malicious apps could exploit the pasteboard to work out a user’s location.

OpenDXL Ontology is intended to allow security components to interoperate right out of the box.

Between ransomware attacks on healthcare devices, malware-laced “medical” apps, and fraud services available on the dark net, attackers are pushing the boundaries on targeting healthcare.

The next-gen-SOC starts with the next-gen SIEM, and Jason Mical of Devo Technology and Kevin Golas from OpenText talk about what capabilities are required, including threat hunting and greater automation, and how security professionals should exploit the…

Explore the latest news and expert commentary on Cyber Risk, brought to you by the editors of Dark Reading

Misconfigured AWS buckets have led to huge data breaches. Following a handful of practices will help keep you from becoming the next news story.