This Chinese hacking group pwned a bunch of Mongolian government sites
A Chinese hacking group broke into a national data center in Mongolia late last year, quietly planting malware into local government websites.
Diplomacy won’t stop North Korean hacking, South Korean officials say
Two top South Korean cybersecurity experts cautioned Thursday that their country is not prepared to stem the tide of North Korean hacking, regardless of two recent summits with Pyongyang that have taken place.
Hackers mined $90,000 worth of Monero with a simple Docker Hub trick
The malicious images were stored on Docker Hub for about a year before they were taken down.
Forcepoint execs: CrowdStrike's warranty is nothing more than marketing
Forcepoint CEO Matt Moynahan: "It probably puts you on the defensive more so than not."
Forcepoint CEO: Stop focusing on tech and start focusing on people
"We have to start thinking about people and data, and not necessarily infrastructure,” Matt Moynahan said at the Cybersecurity Leadership Forum.
National labs will probe election tech for vulnerabilities under planned DHS program
The government is currently planning a cybersecurity program that would allow federally funded national scientific laboratories to privately probe and then document security flaws existing in U.S. election technology, most of which is developed and sold by private companies, according to a senior U.S. official.
DHS cyber specialist: look for behavior patterns with APTs
To better track advanced hacking groups, U.S.-based companies should watch for signals in human behavior instead of changing tactics.
Claroty raises $60 million to protect industrial networks from 'perfect storm' of cyberthreats
Claroty looks to protect operational technology networks from cyberthreats as industrial control systems become increasingly connected and targeted.
Flash zero-day shows up in Qatar amid geopolitical struggles
The findings come as Qatar faces significant geopolitical struggles, including a trade blockade established by its neighbors.
Capgemini to buy commercial cybersecurity arm of Leidos
The French company hopes the acquisition will strengthen its North American presence.
Congress wants to prevent states from weakening encryption
A bipartisan group of House lawmakers has reintroduced legislation that would preempt any attempts by states to weaken encryption.
House panel rejects call for cyberthreat report on ZTE amid possible Trump deal
On the heels of a reported U.S. deal with embattled Chinese telecom company ZTE, American lawmakers rejected a measure that would have directed the Department of Homeland Security to provide more information on any cybersecurity risks posed by the company.
Russian-linked VPNFilter malware is even worse than originally thought, new research suggests
A malware framework that's already infected hundreds of thousands of routers across the globe — particularly in Ukraine — appears to be even more dangerous than originally thought, according to new findings by Cisco Talos.
CrowdStrike announces $1 million warranty for breaches that happen under its watch
Organizations generally have to bear all the cost of a breach, even if they retain a cybersecurity company. CrowdStrike is offering a warranty.
Widespread ‘Zip Slip’ vulnerability affects AWS, HP tools, researchers say
A new widespread vulnerability that lets an attacker execute remote code affects Web development tools offered by Amazon Web Services, HP, and other companies, according to secure-coding startup Snyk.
PGP creator Phil Zimmermann joins StartPage.com to develop 'next-generation PGP'
Zimmerman is best known as the creator of "Pretty Good Privacy" (PGP), an email encryption program first developed in 1991.
Data from 92 million accounts stolen from DNA testing site MyHeritage
The customer DNA and genealogy data that makes up the heart of the company's work is stored on systems segregated from the breached material, the company said.
Synack offers free penetration testing for election systems ahead of 2018 midterms
Another private company is offering free services to campaigns and election officials ahead of the 2018 midterm elections.
The zero-day industry tries 'transparency' in Dubai
In an industry that tends to be quiet by design, Crowdfense is deliberately making noise.
DHS: 'Nefarious actors' could be exploiting SS7 flaw
The Department of Homeland Security has received reports that “nefarious actors” may be exploiting cellular communication vulnerabilities to spy on Americans, according to Chris Krebs, a senior DHS official.