Reddit Hack Shows Limits of MFA, Strengths of Security Training
A tailored spear-phishing attack successfully convinced a Reddit employee to hand over their credentials and their one-time password, but soon […]
News & Updates
News & Updates
Trickbot Members Sanctioned for Pandemic-Era Ransomware Hits
The US Treasury Department linked the notorious cybercrime gang to Russian Intelligence Services because cyberattacks that disrupted hospitals and other
News & Updates
MagicWeb Mystery Highlights Nobelium Attacker’s Sophistication
The authentication bypass used by the Nobelium group, best known for the supply chain attack on SolarWinds, required a massive,
News & Updates
Malicious Game Mods Target Dota 2 Game Users
Valve’s unpatched JavaScript engine and incomplete modification vetting process for Steam-delivered mods led to user systems being backdoored.
News & Updates
Attacker Allure: A Look at the Super Bowl’s Operational Cyber-Risks
Event organizers should be exercising various cyberattack scenarios to ensure they have the proper checks and balances in place to
News & Updates
Addressing the Elephant in the Room: Getting Developers & Security Teams to Work Together
Bridging the divide between developers and security can create a culture change organically.
News & Updates
Google Cloud Connects Chronicle to Health ISAC Feed
Members of the Health-ISAC can ingest threat indicators directly into Chronicle to investigate whether the threat is present in their
News & Updates
Reddit Breached With Stolen Employee Credentials
Reddit code, internal documents, dashboards, and business systems were compromised in the cyberattack.
News & Updates
NewsPenguin Goes Phishing for Maritime & Military Secrets
A sophisticated cyber-espionage attack against high-value targets attending a maritime technology conference in Pakistan this weekend has been in the