Security researchers at Pen Test Partners have found a privilege escalation flaw in the much-maligned Lenovo Solution Center software.

Containers, virtual machines, and the advent of DevOps as a software creation tool all put new pressures on organizations' security strength, according to Dan Hubbard, CEO of Lacework. Cloud's ability to offer scale, capacity, and processing power may even…

From a backdoor placed in the Webmin utility to vulnerability disclosure drama around zero-days in Valve's Steam gaming clients, Threatpost breaks down this week's top stories.

A group of mostly Nigerian nationals attempted to steal $46 million through business email compromise and romance scams, the FBI reports.

News on how Texas is handling a rash of ransomware attacks, Sweden issues its first GDPR fine, and more - catch up on the news of the week in this wrap up!

Techniques too tough for quantum computing solutions will be part of public cloud and tape storage encryption.

Qualys's Chairman and CEO, Philippe Courtot talks about changes in the security landscape he's witnessed during the company's 20-year lifespan, as well as what motivated the vendor to give away its Global IT Asset Discovery and Inventory app for free.

Researchers warn users of several plugins to update as vulnerabilities are being actively exploited to redirect website visitor traffic.

Techniques too tough for quantum computing solutions will be part of public cloud and tape storage encryption.

Ransomware writers are now targeting cloud service providers with network file encryption attacks as a way to hold hostage the maximum number of customers that they can, notes Chris Morales, head of security analytics for Vectra. He also discusses Vectra's…

Cyber security's comprehensive news site is now an online community for security professionals, outlining cyber threats and the technologies for defending against them.

More than three-quarters of social media attacks were executed by automated bots, and login attacks were twice as more likely to be attacked than account registrations, according to an Arkose Labs report.

It's not time to move to post-quantum cryptography yet -- too many things are still up in the air. But you can start to become prepared by making sure your infrastructure is agile.

A spoofed IRS.gov link leads victims to a fraudulent Web page where they are prompted to download malware.

Frank Abagnale, the inspiration behind the hit movie Catch Me If You Can, talks with TechRepublic's Karen Roby about the dangers of social media posts.

Hostinger said that unauthorized access to an internal API server exposed hashed passwords of 14 million customers.

Reassembly of fragmented packets can potentially be exploited against cloud-hosted virtual machine services.

Fraudsters are using social media to spam, steal information, spread propaganda and execute social-engineering campaigns.

The emails are well-crafted and extremely convincing.

A breach at the popular payment card vendor last week mostly involved data of Germans belonging to a loyalty program.