The cybersecurity community is buzzing with concerns of multichannel phishing attacks, particularly on smishing and business text compromise, as hackers turn to mobile to launch attacks.

It took three years, but the Capital One cracker was convicted in the end. Don’t get caught out in a data breach of your own!

Using WebAuthn, physical keys, and biometrics, organizations can adopt more advanced passwordless MFA and true passwordless systems. (Part 2 of 2)

Partnership lets users access one-click ScreenMeet sessions from the Tanium platform.

Organizations can strengthen their network defense with a number of intelligent security innovations.

Zscaler also announced innovations built on Zscaler’s Zero Trust architecture and AWS.

Enables DevOps and security teams to prioritize and remediate risks in cloud-native applications earlier in the development life cycle.

Larger organizations are statistically more at risk, warns Imperva

Treat identity management as a first-priority problem, not something to figure out later while you get your business up and running in the cloud.

Don't sleep on Magecart attacks, which security teams could miss by relying solely on automated crawlers and sandboxes, experts warn.

Researchers have spotted the threat group, also known as Fancy Bear and Sofacy, using the Windows MSDT vulnerability to distribute information stealers to users in Ukraine.

In addition, Aqua Security unveiled a new open source tool, Chain-Bench, for auditing the software supply chain to ensure compliance with the new CIS guidelines.

Open service generates free report detailing potential gaps in compliance, configuration, and security for a user’s multiple domain names.

Addition of WhiteHat Security provides Synopsys with SaaS capabilities and dynamic application security testing (DAST) technology.

A voicemail-themed phishing campaign is hitting specific industry verticals across the country, bent on scavenging credentials that can be used for a range of nefarious purposes.