SEARCH
All Articles
Severe Bug in Libgcrypt Fixed
Developers have patched a serious heap buffer overflow in Libgcrypt that could be triggered easily when data is decrypted.
Google Promises Advertises Can Test No-Cookie Tech
Google said tests show that the new technology to replace third-party cookies doesn't impact ad revenue, but didn't provide more details on how it would enhance user privacy.
Authorities Take Down Emotet Botnet
Police in the US and Europe have disrupted the Emotet botnet, taking over its servers and cutting off communications with infected computers.
Firefox Moves to Cut Off Supercookie Tracking
In Firefox 85, Mozilla is partitioning several caches in the browser in order to prevent trackers from abusing them.
Sudo Flaw Gives Linux Users Root Access
Researchers from Qualys uncovered a major vulnerability in an application that allows administrators to delegate limited root access to regular users. While most major Linux distributions have released fixed versions of sudo, administrators still have to verify their systems are protected.
Cybercriminals Target Vaccine Supply Chain
Over the last year, cybercriminals adjusted their attack tactics with new developments with the COVID-19 pandemic. With attention now on developing and distributing the vaccine for the novel coronavirus, attackers have shifted their focus to target the vaccine supply chain.
Decipher Podcast: Andy Ellis Returns
Andy Ellis, CSO of Akamai, joins Dennis Fisher to discuss the importance of setting priorities, how to assess your strengths and weaknesses as an organization, and the NFL draft.
Enduring Lessons From Securing the Election
Securing the 2020 election was a years-long process, and former CISA Director Chris Krebs found a number of key lessons for security teams during the effort.
EU Regulators Issued Larger GDPR Fines in 2020
The European Union’s data protection authorities have been flexing their regulatory powers under the General Data Protection Regulation over the past year, increasingly imposing larger fines and other enforcement actions.
Trump Executive Order Focuses on Rules for Cloud Providers
One of the last executive orders for the outgoing Trump Administration authorized the Commerce Department to create "know your customer" rules for infrastructure-as-a-service providers.
New Raindrop Tool Tied to SolarWinds Attackers
A piece of malware called Raindrop has been found in some networks compromised by the SolarWinds attackers.
New York Proposes Biometrics Privacy Law
New York lawmakers are moving ahead with their own privacy legislation to regulate how private companies handle biometric data.
Attackers Eyeing Cloud Platforms
Attack groups are increasingly focusing their attention on cloud platforms and services as common entry points for victim networks.
Decipher Podcast: Amanda Berlin
Amanda Berlin of Blumira joins Dennis Fisher to talk about how she got her start in security, learning new skills on the fly, and helping customers find the things that really matter on their networks.
Mimecast Says Attackers Stole Certificate, Targeted Customers’ Email
Email security firm Mimecast said attackers stole a certificate some of its customers use to authenticate to some of its cloud services.