Players noticed that Epic Games was gathering and storing data from Steam accounts without their permission.

The leaks point to a plot, a Calif. court said, ordering pikini app maker Six4Three to hand over its lawyers’ chats with the ICO.

The FBI's crackdown on 15 DDoS-for-hire sites appears to have had an impact on DDoS attacks, the average size for which dropped 85 percent in the fourth quarter of 2018, a new report found.

Another 26m records stolen from another six online companies brings this hacker’s total number of records to 863m from 38 websites.

The notorious Internet of Things botnet is evolving to attack more types of devices - including those found in enterprises.

These coding languages have the most open source vulnerabilities, according to a WhiteSource report.

Set to go into effect on January 1, 2020, the CCPA will affect lots of companies doing business in California, but 86% have yet to meet compliance goals.

A side-by-side comparison of key test features and when best to apply them based on the constraints within your budget and environment.

When asked if the company plans to pay the ransom, its CFO said its main strategy is to use the backup data stored in the system.

Cybercriminals focus on collecting credentials, blackmailing users with fake sextortion scams, and convincing privileged employees to transfer cash. The latter still causes the most damage, and some signs suggest it is moving to mobile.

Researchers have released a proof-of-concept showing how a XXE vulnerability can be exploited to attack Ghidra project users.

The cyberattack, first detected on Monday night, has shut down Norsk's entire global network.

This scam is both intimidating and disturbing – the crooks are presenting themselves as corrupt CIA officials who will take a bribe.

Researcher buys old computers, flash drives, phones and hard drives and finds only two properly wiped devices out of 85 examined.

The latest twist in the Equifax breach has serious implications for organizations.

The UK's data protection authority is hoping that advances to artificial intelligence incorporate data protection by design and is seeking the public's opinion on how to do so.

New survey shows where elite DevOps organizations are better able to incorporate security into application security.

Threatpost talks to Phil Neray with CyberX about Tuesday's ransomware attack on aluminum producer Norsk Hydro, and how it compares to past manufacturing attacks like Triton, WannaCry and more.

The sharp decline follows an FBI takedown of so-called booter, or DDoS-for-hire, websites in December 2018.

Some of the flaws would allow remote code-execution.