The notorious Internet of Things botnet is evolving to attack more types of devices - including those found in enterprises.

These coding languages have the most open source vulnerabilities, according to a WhiteSource report.

Set to go into effect on January 1, 2020, the CCPA will affect lots of companies doing business in California, but 86% have yet to meet compliance goals.

A side-by-side comparison of key test features and when best to apply them based on the constraints within your budget and environment.

When asked if the company plans to pay the ransom, its CFO said its main strategy is to use the backup data stored in the system.

Cybercriminals focus on collecting credentials, blackmailing users with fake sextortion scams, and convincing privileged employees to transfer cash. The latter still causes the most damage, and some signs suggest it is moving to mobile.

Researchers have released a proof-of-concept showing how a XXE vulnerability can be exploited to attack Ghidra project users.

The cyberattack, first detected on Monday night, has shut down Norsk's entire global network.

This scam is both intimidating and disturbing – the crooks are presenting themselves as corrupt CIA officials who will take a bribe.

Researcher buys old computers, flash drives, phones and hard drives and finds only two properly wiped devices out of 85 examined.

The latest twist in the Equifax breach has serious implications for organizations.

The UK's data protection authority is hoping that advances to artificial intelligence incorporate data protection by design and is seeking the public's opinion on how to do so.

New survey shows where elite DevOps organizations are better able to incorporate security into application security.

Threatpost talks to Phil Neray with CyberX about Tuesday's ransomware attack on aluminum producer Norsk Hydro, and how it compares to past manufacturing attacks like Triton, WannaCry and more.

The sharp decline follows an FBI takedown of so-called booter, or DDoS-for-hire, websites in December 2018.

Some of the flaws would allow remote code-execution.

A long-quiet malware family has been spotted targeting financial technology firms, armed with new obfuscation techniques to avoid detection.

Lone Android vulnerability among the top 10 software flaws most abused by cybercriminals.

The science publisher is blaming a misconfigured server that exposed a constant stream of its users’ credentials.

Add this latest public warning system sabotage to a growing list of fear-and-panic-spreading hacking incidents.