Meanwhile, remediation times are ballooning to a year or more in the case of malicious attacks, according to Ponemon Institute.

The sooner a company can detect and respond to an incident, the less likely they are to pay for it, a new IBM-Ponemon study finds.

WeTransfer is being used by hackers to circumvent email gateways looking to zap malicious links.

Executives and directors need quantitative measurements - such as likelihood of loss and hard-dollar financial impact - to make more informed decisions about security risks.

The idea of de-identifying data has been around for a while. However, a study published this week asserts that it’s even easier to re-identify information than we first thought.

Google in May disclosed that several Android devices had been shipped pre-installed with the RAT.

New York City is considering a law that could stop cellphone carriers and smartphone app vendors from selling their location data.

Cyber security's comprehensive news site is now an online community for security professionals, outlining cyber threats and the technologies for defending against them.

Data protection regulations are only going to grow tighter. Make sure you're keeping the customer's best interests in mind.

A new report from Barracuda Networks reveals that email-based attacks are having a major impact on businesses, despite increased confidence in email security systems.

EvilGnome was written to target the comparatively small but committed community who use Linux on their laptops.

Insider attacks are some of the most threatening cyberattacks to data security, according to a Nucleus Cyber report.

The FTC initially wanted a fine worth tens of billions, plus potential jail time for execs.

The fine, against a large hospital, stems from its apparent lack of internal patient record security.

Black Hat USA speakers to discuss what it will take to 'shift knowledge left' to build up a corps of security-savvy software engineers.

The virus affected the network, applications, and databases at City Power, which delivers electricity to the South African financial hub.

Malware infection technique called TxHollower gets updated with stealthy features.

Webinar examines challenges in patch management and offers solutions to streamline the process.

A series of attacks on school district systems leads the governor to declare the state's first cybersecurity state of emergency.

Data from an intrusion last year suggests Iron Liberty group may have a new trick up its sleeve, Secureworks says.