NSO Group partly disputes claim about use of U.S.-based servers in WhatsApp spy campaign
NSO Group is claiming in court that WhatsApp's allegations it used U.S.-based infrastructure to spy on WhatsApp users is false.
Trump administration looks to throttle Chinese surveillance companies’ business with U.S.
The U.S. Commerce Department added eight Chinese companies to its Entity List, citing human rights abuses and surveillance against Muslim minorities.
E-ticketing system exposes airline passengers' personal information via email
The weakness is a check-in link that is emailed to customers, and it exposes information such as passport numbers, flight numbers, researchers at Wandera said. The affected airlines include Southwest, Air France and KLM.
Medigate raises $15 million Series A for medical device security
A pool of startups focusing on medical device security is forming.
Why you shouldn't be afraid of nation-state hackers
There's ample evidence of hacker “B-teams” amongst even the most sophisticated nation-state groups and you shouldn't be afraid of them.
30 years ago, the world's first cyberattack set the stage for modern cybersecurity challenges
The very first cyberattack clogged up the nascent internet, halting digital communications. Now much bigger, the internet is still largely open to – and suffering regularly from – similar attacks.
British Airways has some good news and bad news about its payment breach
A card-skimming campaign affected an additional window of time beyond what the company first reported. But the number of accounts exposed from that first breach is smaller than initially reported.
RSA conference app leaks user data
Here's a new adage for 2018: It's not a true security conference until someone discovers a flaw in the technology used by the conference's event staff.
NIST releases updated cybersecurity framework
The new version updates the federal agency's guidelines in several areas, including authentication and identity; cyber risk self-assessments; managing supply chain cybersecurity; and vulnerability disclosure.