Silent Circle acquires hardware VPN firm Kesala
Kesala's small black box was developed is designed to encrypt and obfuscate internet traffic.
A reversal? Large-scale DDoS attacks take recent dip
Massive denial of service attacks were largely missing from the internet this summer.
Chinese ad platform secretly stole phone data from Android devices
The research showed impacted apps using were downloaded over 100 million times in total.
Newest Microsoft report issues warning on cloud 'weaponization'
The company found the number of attacks on cloud-based users in the first quarter of this year was four-fold what it had been in the same period last year.
Security companies give public free way to sift through malware research
Comodo and Check Point Software Technology are giving away their research — and in Comodo's case, the tools used to conduct it, as well.
Canadian allegedly paid by FSB officers to breach Yahoo will be extradited to U.S.
22-year-old Karim Baratov was arrested in March by Toronto police for breaching Yahoo multiple times between 2014 and 2016.
Newly uncovered Carbon Black bug may have mistakenly sent files to VirusTotal
The bug can potentially result in files being miscategorized and mistakenly uploaded to VirusTotal where they can be seen publicly.
Cyber CEOs urge officials to make NIST Framework a part of NAFTA talks
Ten major cybersecurity companies have written to the U.S. Trade Representative Robert Lighthizer to urge that alignment of cybersecurity standards should be part of NAFTA.
FBI pushes private sector to cut ties with Kaspersky
Amid calls to remove the company out of the government, the FBI has been telling private sector companies that Kaspersky is an unacceptable threat to national security.
Maersk may lose up to $300M due to NotPetya attack
The Danish shipping behemoth says the attack was a “significant business interruption.”
Hacker posted stolen material from Mandiant researcher in attempt to damage FireEye stock
The incident highlights how a hacker can stoke fears of a corporate breach to negatively affect the stock price of a specific, targeted company.
No longer 'federal,' no longer exclusively 'cyber' — NIST security controls break out
The National Institute of Standards and Technology has removed the word "federal" from the title of its magisterial catalogue of cybersecurity and privacy controls.
This one matters, too: Carnegie Mellon issues guide to disclosing software vulnerabilities responsibly
"This is not a technical document ... This is about a very human process," says one of the authors from the prestigious Software Engineering Institute at Carnegie Mellon.
Bad backdoor found in server software used by financial institutions
“ShadowPad is an example of how dangerous and wide-scale a successful supply-chain attack can be," one researcher said.
Uber reaches deal with FTC on consumer privacy, agrees to new program
Ridesharing behemoth Uber agreed Tuesday to institute "a culture of privacy," following a Federal Trade Commission investigation that revealed the company failed to take reasonable security measures to safeguard users personal data.
One Nigerian man's simple phishing campaign drains thousands from corporate coffers
"The malware he uses is old, generic and readily available online," the researchers wrote.
As Trump promises 'fire and fury,' North Korean hackers target U.S. defense contractors
Hackers linked to a North Korean cyber espionage group — best known for a global ransomware attack dubbed "WannaCry" — are now actively targeting U.S. defense contractors.
ICS-focused cybersecurity startup Dragos raises $10M to protect electric grid
Founded by three former U.S. intelligence analysts who previously investigated real world cyberattacks on critical infrastructure, Dragos until recently remained a largely self-funded operation.
The tech behind the DARPA Grand Challenge winner will now be used by the Pentagon
The tech behind Mayhem, the winner of DARPA's Cyber Grand Challenge, has been brought into the DoD under a seven-figure contract through DIUx