A second vulnerability could be used to prevent access to almost all of a site’s existing content, by simply redirecting visitors.

Understanding the limitations of authentication protocols, especially as enterprises link authentication to cloud services to Active Directory, is essential for security teams in the modern federated enterprise.

A spate of phishing attacks have promised financial relief due to the coronavirus pandemic - but in reality swiped victims' credentials, payment card data and more.

It's not just the IT and security team's responsibility to keep data safe -- every member of the team needs to be involved.

Like NotPetya, it overwrites the master boot record to render computers "trashed".

Technique involves saving malicious Excel file as read-only and tricking users into opening it, Mimecast says.

In one of the strangest stories of the year, the COVID-19 virus has halted plans by major browsers to drop support for the aging and insecure Transport Layer Security (TLS) 1.0 and 1.1 protocols.

The FCC has given voice carriers until June 2021 to implement technology it says will stop the robocall plague that’s driving us all insane.

With videoconferencing's rise as an essential tool for remote work comes a downside: more security scrutiny, which has turned up a number of security weaknesses.

Attacks using a brand-new card-harvesting code is targeting small- to medium-sized businesses, claiming 19 sites so far.