A ransomware incident analyzed by IBM X-Force shows that the attacker wouldn't have been able to decrypt the data, even if the ransom was paid.

Research details vulnerabilities in the Zephyr Real Time Operating Systems and MCUboot, both used in IoT devices and sensors.

The campaign impersonates Zoom emails, but steals the Microsoft account credentials of its victims, says security firm Abnormal Security.

According to a Tessian survey, data protection concerns go out the window for remote employees.

Apple has fixed a flaw in the Sign in with Apple feature that could have enabled attackers to break into user accounts for third-party services.

Over 7 million records exposed, according to vpnMentor, but app maker says there is no sign of malicious use.

The UK’s National Crime Agency has hit on a simple way to stop teens from being sucked into cybercrime – using Google Ads.

Some 7,600 dark-web sites were obliterated in an attack on the most popular provider of .onion free hosting services, Daniel’s Hosting.

DivvyCloud discusses the changing nature of identity access management (IAM) - and what kind of challenges and opportunities that is creating for businesses.

The zero-day vulnerability tracked as CVE-2020-9859 is exploited by the "Uncover" jailbreak tool released last week.

How banks can maintain security and data integrity in the middle of a pandemic.

BEC scams accounted for half of all cybercrime losses in the US in 2019, according to Check Point Research.

For now, security teams face freezes in projects and hiring - and budget cuts, security industry analysts say.

At least 26 different open-source code repositories were found to be infected with an unusual attack on the open-source software supply chain.

The acquisition brings three new products into Thycotic's privileged access management lineup.