News

From ZIP attachments spreading Gandcrab, to DOC files distributing Trickbot, researchers tracked five widescale spam campaigns in 2019 that have made use of malicious attachments.

Out of 25 million? Cripes

The Office of the Australian Data Information Commissioner's quarterly report has revealed that more than 10.5 million Ozzies – about 40 per cent of the lot of them – had their personal data slurped in one single incident in the first three months of 2019.…

Plus, Diachenko strikes again with Indian data find

Roundup  Last week, a Symantec boss stepped down, a Chinese hacker was called out, and an AirBnB hidden camera creep was cuffed.…

Simple hack turns them into super secret spying tool

A GPS tracker used by elderly people and young kids has a security hole that could allow others to track and secretly record their wearers.…

Using a bug patched in March, the attacks are starting to ramp up worldwide.

From a creepy Airbnb incident to Verizon's Data Breach Investigations Report, Threatpost editors break down the top privacy and security stories for the week ended May 10.

You know the drill: Patch and stop using C

Cisco Talos researchers have uncovered an SQLite use-after-free() vulnerability that could allow an attacker to, in theory, remotely execute code on an affected device.…

The WannaCry attack proved pivotal, changing the way organizations go about securing their environments.

Nvidia has patched three vulnerabilities in its Windows GPU display driver that could enable information disclosure, denial of service and privilege escalation.

Troubled security house keeps up trend of sudden resignations

Greg Clark, CEO and president of Symantec, has "stepped down" suddenly and with no permanent replacement lined up, just as his predecessor did.…

Nigerian scam groups launched even more attacks in 2018 - and used more complex types of malware to reach more victims.

Might be back inside soon

Chelsea Manning has been released from prison after 62 days for refusing to testify to an American grand jury investigating WikiLeaks.…

Unnamed security shops said to have lost source code

A Russian hacking outfit says it has stolen confidential data from a trio of US antivirus companies.…

Firm ever so sorry, takes security of info seriously, vows not to do it again etc

Insurer Chubb scored a privacy own goal recently when a double-sided printing error on bulk mailers sent to customers about a policy document change contained a stranger's personal details on one side of the sheet.…

Fujie charged with killing them softly with his scripts. And by them, we mean, the health insurance giant's computers

US prosecutors today formally accused two people of being part of a Chinese hacking crew responsible for one of the biggest cyber-heists in American history.…

A simple Wireshark analysis was enough to subvert the gadget, which uses iris identification to protect the drive.

Two have been indicted in the 2015 massive data breach of health insurer Anthem, which compromised the data of at least 78 million customers.

Soldier's pilfered docs provided basis for drone news reports

A former Air Force intelligence analyst who fed documents to the press detailing the US military's secret drone programs has been indicted on five criminal charges.…

A video interview and Q&A with IoT specialist Dan Demeter of Kaspersky Lab.

Alpine Linux Docker images available via the Docker Hub contained a critical flaw allowing attackers to authenticate on systems using the root user and no password.