The Jmail Breaker attack leverages an old vulnerability in Joomla! along with a newly found flaw in the mail module.

IT managers are flying blind in the battle to protect their companies from cyber attacks, according to a new Sophos survey.

More than half (51%) of respondents said their security teams spend more time on manual processes than handling vulnerabilities, according to a Tenable and Ponemon report.

Untrained insiders and foreign governments create huge cybersecurity risks in government agencies, according to a SolarWinds report.

A scammer ring, dubbed Scarlet Widow, has targeted nonprofits, schools and universities with an array of business email compromise (BEC) attacks over the past few months.

You can turn to your trusty Apple Watch to log into websites that use your Microsoft Account. Here's how.

The incident stems from an employee at a vendor working with the medical center improperly disclosing patient data.

Tuesday's keynotes kicking off RSA tackled both light and dark visions of the future, the imperative to become obsessed with trust, IoT and AI, and they even featured Helen Mirren and a flash mob.

Deceptive and inappropriate tactics are prevalent in free gaming apps, according to a new report to be released at the RSA Conference.

Facebook admits it’s using numbers supplied for 2FA for more than security, and you can’t turn it off.

Neither machines nor humans might be entirely trustworthy, but the cooperation of the two might be the answer to issues of misinformation, deep fake videos, and other issues of trust, say security leaders.

Problem lies in the manner in which Word handles integer overflow errors in OLE file format, Mimecast says.

People claim to value data privacy and don't trust businesses to protect them - but most fail to protect themselves.

Here’s the latest episode of the Naked Security podcast – listen now!