Tide's method for protecting passwords splinters them up into tiny pieces and stores them on distributed nodes.

The spyware poses as a legitimate application, spreading via SMS messages to victims' contact lists.

Google has kicked 24 apps off of its official Android app marketplace after spyware was discovered in them.

Explore the latest news and expert commentary on Vulnerabilities & Threats, brought to you by the editors of Dark Reading

Two problems, Twitter says: vulnerabilities that mobile carriers need to fix & its reliance on linked numbers for 2FA.

The good news is most insider threats derive from negligence, not malicious intent. The bad news is the frequency of negligence is already ahead of where it was in 2018.

Deepfake Detection Challenge aims to spur creation of technology to combat AI used for creating altered videos that intentionally mislead viewers.

Facebook’s replaced “tag suggestions” with “face recognition” – a setting Facebook says may help to save us from identity thieves.

YouTube can’t track kids online anymore without their parents’ permission, says the FTC, as it fined the Google-subsidiary $170m.

Facebook confirmed the breach, claiming that the total number of users in the database was 210 million.

Increasing awareness about the critical importance of DNS security is the first step in improving the risk of being attacked. It's time to get proactive.

The job website says it cannot notify users since the exposure occurred on a third-party organization's servers.

iPhone hacking levels up, military veterans targeted in an identity fraud scam, and more - catch up on the week's biggest stories with the Friday Five!

From deepfake to data exposures, the Threatpost team talks about the top security trends driving this week's biggest news stories.

The vulnerability in Exim could allow an attacker to remotely execute code with root privileges.

Students should keep their eyes peeled for phishing emails purporting to be from their colleges, as well as online resources laced with malware, researchers warn.

Large portions of APT3's remote code-execution package were likely reverse-engineered from prior attack artifacts.

A survey by Pew Research Center finds that Americans support use of facial recognition by law enforcement , but not by tech or advertising companies.