Any machine that allows SSH login would benefit from the addition of two-factor authentication.

Some 59% of all malicious files detected in the first quarter of 2019 were documents, according to a Barracuda Networks report. Here's how to protect yourself against this growing threat.

All online banks risk giving attackers unauthorized access to personal data, funds, and sensitive information, according to Positive Technologies.

If you’re a Magento admin, stop what you’re doing and patch now.

Spam campaign features obfuscated .zipx archive that unpacks LokiBot attack.

Three waves of DNS hijacking attacks against consumer routers have been linked back to Google Cloud Platform abuse.

<i>The Matrix</i> ushered in a new generation of sci-fi movies and futuristic plotlines with a relentless, seemingly invulnerable set of villains. Twenty years later, that theme is all too familiar to security pros.

The 74 cybercrime groups were offering illicit services - from email spamming tools to stolen credentials - right on Facebook's platform.

Employee theft at SMBs, fighting stalkerware, and a "hacker-proof" new cryptographic library - catch up on the week's infosec news with this roundup!

From sushi and phishing to robots, passwords and ninjas -- and the winners are ...

The attack campaigns have re-routed DNS requests through illicit servers in Canada and Russia.

To make sure a deleted file can't be recovered, you'll need to use a third-party shredding tool. Here's a look at three such free programs: Eraser, File Shredder, and Freeraser.

Lookout Phishing AI, which discovered the attack, says it has been going on since late November.

Cisco re-patched its RV320 and RV325 routers to protect against two high-severity vulnerabilities at the same time reported two new mediums-severity bugs with no fixes.

Chris Vickery with UpGuard, who discovered two datasets exposing millions of Facebook records, discusses his findings and the implications of data collection with Threatpost.

From a Russian GPS spoofing campaign to the Facebook apps leaking millions of records – it’s weekly roundup time.

The surveillance tool was signed with legitimate Apple developer certificates.

It’s fewer than 1% of the 50 million songs and videos Myspace lost, but hey, it’s better than nothing!

Mozilla doesn’t yet know how to solve the problem of website push notification spam in the Firefox browser, but it’s working on it.