Security news that informs and inspires

All Articles

2376 articles:

Q&A: Joe Grand

Hardware hacker Joe Grand discusses his work hacking hardware cryptocurrency wallets and how much he still has to learn after decades of hacking.

Hardware Security

Microsoft Rolls Back Strategy to Block Office Macros By Default

Security researchers say the choice by Microsoft to re-enable Office macros by default is "puzzling."

Macros, Microsoft

Apple Lockdown Mode ‘First Step Toward Mainstreaming Better Protections’

The new Lockdown Mode that will be in iOS 16 this fall will disable many features used to target at-risk users with commercial spyware tools.

Apple

Decipher Podcast: Source Code 7/8

Welcome back to this week’s Source Code podcast by Decipher, where we go over the top security news of the week with input from our sources.

Podcast, Source Code

CISA: North Korea-Backed Actors Using Maui Ransomware

North Korean government-backed actors are using the new Maui ransomware to target health care organizations, CISA says.

Ransomware, North Korea

New Hive Ransomware Variant Gets Rust Overhaul

Hive is the latest ransomware family to undergo a full code migration to Rust.

Ransomware

Decipher Podcast: Joe Grand

Dennis Fisher talks with Joe Grand, renowned hardware hacker and member of the L0pht, about his recent work hacking hardware crypto wallets, hacking culture, and why curiosity matters.

Podcast

Dozens of Malicious Data-Harvesting NPM Packages Found

Researchers have exposed dozens of malicious npm packages that harvest sensitive data from end users of various applications and websites.

Npm Packages

Google Warns of Chrome Zero-Day Bug

Google has fixed a high-severity bug in Chrome for which an exploit exists in the wild.

Google, Google Chrome

Black Basta Ransomware Actors Take Aim at PrintNightmare Flaw

Threat actors deploying the Black Basta ransomware have exploited the Microsoft PrintNightmare bug as part of their attacks.

Ransomware, Microsoft

Decipher Podcast: Source Code 7/1

This week's Source Code podcast by Decipher takes a look behind the scenes at top news with input from our sources.

Podcast, Source Code

Google Cracks Down on Domains Used by Hack-For-Hire Groups

Hack-for-hire firms are targeting a range of accounts from Google and major webmail providers in credential theft campaigns.

Hack for Hire, Google

To Combat Zero Day Variants, ‘We Need Comprehensive Fixes’

At least half of the zero days exploited in the wild in 2022 are variants of previously fixed bugs, Google data shows.

Google, Zero Day

ZuoRAT Malware Found Hitting Home Routers

A new piece of malware called ZuoRAT, based on the Mirai code, is hitting SOHO routers and performing DNS and HTTP hijacking.

Malware, China

U.S. Gov Agencies Face Looming Microsoft Exchange Online Modern Auth Deadline

New guidance urges U.S. government agencies to expedite the switch to Modern Auth in Exchange Online ahead of Microsoft's Oct. 1 deadline.

Microsoft