Some 67% of all malware seen in the first quarter was delivered via HTTPS, according to security firm WatchGuard Technologies.

Threat actors shift focus from COVID-19 to employee coronavirus training and current events like Black Lives Matter as cyber-attacks continue to rise.

The recent spread of the distributed denial-of-service tool attempts to exploit a dozen web-framework flaws, uses credential stuffing, and is intended to work against a variety of operating systems.

Security and development teams must make it clear why their segment of the development life cycle is relevant to the other teams in the pipeline.

Several high-severity flaws in Nvidia's GPU display drivers for Windows users could lead to code-execution, DoS and more.

Malicious botnet sources explode in new attacks that push boundaries in terms of volume and duration.

Analysis of FBI data found that nearly $2 billion was stolen from US victims in 2019 just from business email compromise.

Your credit card is worth around $33, your driver's license around $27, and your PayPal account around $42, according to Reviews.org.

Even as more code is produced, indirect dependencies continue to undermine security.

How epidemiology can solve the people problem in security.

A first-stage malware loader spotted in active campaigns has added additional exploits and a new backdoor capability.

Privacy advocates are up in arms about a sweeping new bill introduced this week that would allow "lawful access" of encrypted devices and services with a warrant.

Updating CA root SSL certificates requires updating the firmware on streaming devices, smart devices, routers, cameras, and more.

Lawmakers proposed a new bill that would ban the use of facial recognition by law enforcement nationwide.

The right decoys can frustrate attackers and help detect threats more quickly.

Researchers from IntSights observed a sharp increase in the use of popular instant messaging apps over the past year among threat groups.