Urgent Google Issues Emergency Patch for Chrome ZeroDay
With scant details attached, Google Chrome seeks to shore up yet another exploited zero-day vulnerability.
Reimagining the Role of the CISO
Embedding security throughout your company has greater organizational impact and myriad benefits.
How to Attract Top Research Talent for Your Bug Bounty Program
Successful bug bounty programs strike a balance between vendor benefits and researcher incentives.
Cryptojacking Freejacking Compromise Cloud Infrastructure
Cybercriminal groups are targeting misconfigured Docker and Kubernetes clusters — or just automating the sign-up process for free trial accounts — to build infrastructure for cryptomining.
Google Trumpets US Federal Open Source Security Initiative
A bipartisan bill aims to create a usable framework for the use of open source components when building applications, which Google is urging the private sector to support.
Prepare Now for Critical Flaw in OpenSSL Security Experts Warn
Even if the security bug is not another Heartbleed, prepare like it might be, they note — it has potentially sprawling ramifications.
Raspberry Robins Cyber Worm Infects Thousands of Endpoints
The malware is being used to deliver Clop ransomware, in a vicious spate of October attacks that show an evolution in its methods.
iOS Bug Lets Apps Record Siri Conversations
Without even asking for permissions, the newly discovered SiriSpy flaw in Apples iOS Bluetooth access could allow someone to access user interactions with Siri and keyboard-dictation audio.
Cyberattackers Target Instagram Users With Threats of Copyright Infringement
A novel campaign is using an emerging URL redirection tactic to try to trick business users and others into clicking on an embedded link and giving up credentials.
Google Chrome Pays 57K and Counting in Bug Bounties for Latest Update
Chromes Stable Channel 107 rollout includes security fixes from a slew of independent researchers, racking up nearly $60,000 in bounties.