Threatpost

Einstein is in violation of the the HHS 60-day breach notification rule, but unlikely to face penalty.

Researchers have traced the origins of a campaign - infecting SQL servers to mine cryptocurrency - back to an Iranian software firm.

Researchers warn that attackers are collecting reconnaissance for future business email compromise attacks using Google Forms.

A phishing campaign spoofs Xerox notifications to lure victims into clicking on malicious HTML attachments.

Cisco is stoppering critical holes in its SD-WAN solutions and its smart software manager satellite.

The company also issued patches for Tesla-based GPUs as part of an updated, separate security advisory.

The attack vector was not the Orion platform but rather an email-protection application for Microsoft 365.

Users of dating apps - like Tinder, Match and Bumble - should be on the lookout for investment-fraud scammers.

Mystery of spying using popular chat apps uncovered by Google Project Zero researcher.

Seven flaws in open-source software Dnsmasq could allow DNS cache poisoning attacks and remote code execution.

Joyce will replace Anne Neuberger, who is now deputy national security advisor for the incoming Biden administration.

The post-compromise backdoor installs Cobalt Strike to help attackers more laterally through victim networks.

The FreakOut malware is adding infected Linux devices to a botnet, in order to launch DDoS and cryptomining attacks.

Users of the Linux-based open-source firmware—which include developers from commercial router companies--may be targeted by phishing campaigns, administrators warn.

Medical-device security has long been a challenge, suffering the same uphill management battle that the entire sprawling mess of IoT gadgets has faced.

Expert panel awards dubious honors to 2021 Consumer Electronics Show’s biggest flops, including security and privacy failures.

Starting Feb. 9, Microsoft will enable Domain Controller “enforcement mode” by default to address CVE-2020-1472.

Security researchers lambasted the controversial macOS Big Sur feature for exposing users' sensitive data.

The tech giant removes 164 more offending Android apps after banning software showing this type of behavior from the store last year.

Facebook has sued two Chrome devs for scraping user profile data - including names, user IDs and more.