Many federal agencies are unprepared to "confront the dynamic cyber threats of today," according to a Senate investigation this week.

The dependency trees of modern software-development make smaller open-source projects vulnerable to hackers sabotaging code.

Hackers are stealing Instagram credentials through a tricky phishing scam that asks victims to apply for exclusive verified account status.

Breaches caused by external vendors and service providers have become a major and escalating problem for organizations.

As personal messaging platforms see the rise of end-to-end encryption, businesses struggle to provide strong levels of security.

Netflix, TD Bank, and Ford were only a few of the companies whose data was exposed by three leaky Amazon S3 buckets owned by Attunity.

Jun Ying is the second Equifax employee found guilty of insider trading related to the massive 2017 data breach.

A new report offers the first step toward understanding and managing IoT cybersecurity risks.

Pentesters say a keyless smart lock made by U-tec, called Ultraloq, is neither ultra or secure.

Alphabet's enterprise cybersecurity division will become part of the Google security portfolio.

Proof-of-concept, which allows remote code execution, is latest to exploit Dynamic Data Exchange (DDE) and is another reminder why organizations must ensure Office settings are secure.

Spammers and scammers are getting better at spelling and grammar – so make sure you aren’t relying on language alone to spot phishes…

Trying to save 20 minutes, 100 drivers took a Google Maps shortcut… into a field, where the mud-stuck cars then caused a 2-hour delay.

In an effort to show you how advertisers snoop on your surfing activity, Mozilla is offering you the chance to pretend that you’re someone else.

“I’m not a voyeur, I’m a technology enthusiast,” says the creator, who combined deepfake AI with a need for cash to get ka-CHING!

Twenty years in, enterprise VPNs occupy a uniquely solid position in a changing landscape.

This year Black Hat USA is introducing special half-day programs focused on important topics that combine subject matter expertise with networking opportunities.

Know your enemy and know your risk are two pieces of advice offered in a new report from security company eSentire.

Looking at underlying security needs means organizations are more likely to be in compliance with privacy regulations.