Threatpost

Amazon has rolled out patches for the vulnerabilities and users are urged to confirm their device is updated to firmware version 2.13.11 or later.

Today you can access the aggregated and analyzed 2020 Cybersecurity Salary Survey Results and gain insight into the main ranges and factors of current cybersecurity salaries.

Biometric facial scanning won’t be a requirement for all U.S. citizens traveling internationally after all, the department decided.

A platform that allows online applications for copies of birth certificates did not store its data properly.

Since 2007, the two allegedly operated a cybercrime ring called "Bayrob Group."

A phishing attack is masquerading as messages from the game's developers.

A PR and marketing provider exposed sensitive data for a raft of big-name companies.

The platform has linked documents posted on its site to a vote-manipulation campaign already observed on Facebook earlier this year.

Most counties are not protected from impersonation-based spearphishing attacks.

Authorities say they have halted over 600 domestic money mules – exceeding the 400 money mules stopped last year.

In this past week, the authorities have cracked down on various BEC scams and cybercrime gangs.

In a coffee-shop scenario, attackers can hijack "secure" VPN sessions of those working remotely, injecting data into their TCP streams.

Facebook has paid over $4 million to victims to reimburse them for the unauthorized ads purchased using their ad accounts.

Researcher discovered a MacOS trojan hiding behind a fake crypto trading platform believed to be the work of the state-sponsored North Korean hackers behind WannaCry.

Security experts say the incident shows that cybercriminals are using ransomware to hit companies where it hurts.

Names, addresses, phone numbers, call and text message records and account PINs were all caught up in a cloud misconfiguration.

Authorities cracked down on cybercrime group Evil Corp. with sanctions and charges against its leader, known for his lavish lifestyle.

HackerOne has paid out $20,000 to a bounty hunter who discovered a session cookie issue, due to "human error," on the bug bounty platform.

The authentication bypass (CVE-2019-19521) is remotely exploitable.

Researchers uncovers “ultimate man-in-the-middle attack” that used an elaborate spoofing campaign to fool a Chinese VC firm and rip off an emerging business.