Viry a Červi

Phishing emails target a bank's users with malware - and make their landing page look more legitimate with fake Google reCAPTCHAs.

There was a shocking turn of events in crypto-world.

Profitable secure SIM firm in the bag by March, Thales hopes

French defence tech conglomerate Thales has flogged off its hardware security module biz nCipher Security, a sale demanded by competition regulators over Thales' buyout of Gemalto.…

Threatpost talks to HackerOne CEO Marten Mickos on the EU's funding of open source bug bounty programs, how a company can start a program, and the next generation of bounty hunters.

U.S. and subcontinent consumers were the most affected by this week's exposure revelations.

From password manager vulnerabilities to 19-year-old flaws, the Threatpost team broke down this week's biggest news stories.

There's a PhD position in it too, if you want to get involved

NCC Group and the University of Surrey have set up a "Space Cyber Security Research Partnership" to investigate the security issues faced by satellites.…

Facebook announced it's tweaking its Android version, which was tracking your location even when the app wasn't in use.

Can YouTube ever keep video comments under control, or it is time to kill off comments altogether?

Overzealous use of HTTP/2 flow control settings in IIS could have brought servers to their knees.

Domains play a crucial role in most cyber attacks, from the very advanced to the very mundane. Today, we publish a VB2018 paper by Paul Vixie (Farsight Security) who undertook the first systematic study into the lifetimes of newly registered domains.

Read more

Until this month, the Edge browser could bypass its own warnings about Flash content on 58 websites, thanks to a hidden list.

Weigh in on password managers with our Threatpost poll.

Can your phone reliably detect card skimmers using Bluetooth alone? Find out in the latest Naked Security Live video...

Plus: How Microsoft Edge helps Facebook Flash files dodge click-to-play rules in Edge

Adobe is taking a second crack at patching security bugs in its Acrobat and Reader PDF apps.…

Premium-access credentials to porn sites are hot in the cyber-underground, as credential-harvesting malware proliferates.

Adobe has issued yet another patch for a critical vulnerability in its Acrobat Reader - a week after the original fix.

Cybercrims aren't just raking it in – they're dishing it out too

Extortionists are promising salaries of more than a quarter of a million pounds to skilled infosec folk willing to put on a black hat, according to research outfit Digital Shadows.…

Admins should update immediately to fix a remote code-execution vulnerability.

Several popular password managers appear to do a weak job at scrubbing passwords from memory once they are no longer being used.