BACKGROUND: Travis CI exposes private creds of thousands of open source projects that rely on the service. Twitter user @peter_szilagyi Tweeted on Tuesday that “Between the 3 Sept and 10 Sept,

According to the 2021 IBM Security X-Force Cloud Threat Landscape Report, over half of breaches were the result of shadow IT and two-thirds of improperly configured APIs accounted for most cloud

BACKGROUND: Epik, the Right-Winged domain registrar, has notified users of a security breach after Anonymous claimed to have stolen “a decades worth of data” from the web registration company. Rob

BACKGROUND: Three former intelligence operatives are to pay $1.6M to resolve criminal charges after working as mercenary hackers for the United Arab Emirates government. The U.S. government has entered a

It has been announced by Microsoft that users can now delete all passwords from their accounts and instead log in using an authenticator app or other solution. If passwordless login is enabled,

In its first update since 2017, the OWASP Top 10 Web Application Security Risks 2021 has been published for peer review.  Experts Comments September 15, 2021 Jayant Shukla + Follow

Experts Comments September 16, 2021 Adam Bunn + Follow Me – UnFollow Me Lead Software Engineer Rapid7.com Windows Elevation of Privilege Vulnerability aka HiveNightmare/SeriousSAMWith a public proof-of-concept having been available

BACKGROUND: New poll results from Deloitte (press rls. & poll results linked at bottom) signal a vast majority (86.7%) ofC-suite and other executives say they expect the number of cyberattacks targeting

BACKGROUND: It has been reported that the cloud security vendor Wiz—which recently made news by discovering a massive vulnerability in Microsoft Azure’s CosmosDB-managed database service—has found another hole in Azure. This vulnerability will impact the

BACKGROUND: Researchers at SentinelLabs have discovered a high severity flaw in an HP OMEN driver – a popular gaming system – which affects millions of gaming devices and users worldwide.

First seen in August and still in a testing phase, this Android banking trojan offered on the Dark Web is promising a disturbingly ambitious program of features. As reported Friday

BACKGROUND: Following the news that Britons are ‘too polite’ to hang up scam phone calls, coupled with today’s research by Which? revealing ‘smishing’ text messages are on the rise, cybersecurity expert breaks down

BACKGROUND: It has been reported that Apple has updated its software for iPhones to address a critical vulnerability that independent researchers say has been exploited by notorious surveillance software to spy

BACKGROUND: Technology giant Olympus hit by BlackMatter ransomware. Olympus said Saturday that it “is currently investigating a potential cybersecurity incident affecting limited areas of its EMEA (Europe, Middle East, Africa)

BACKGROUND: Following today’s new report from Finance UK which has discovered that impersonation fraud has doubled in the first half of this year and, in many cases, politeness is making

BACKGROUND: Researchers at Yandex & Qrator Labs have been tracking what they are calling the “Mēris” botnet (meaning Plague in Latvian) and it may be the largest DDoS attack ever.

Please see security expert comments below on vaccine passport security. Experts Comments September 12, 2021 Rick McElroy + Follow Me – UnFollow Me Principal Cybersecurity Strategist VMware What security risks

It has been reported that hackers breached the United Nations’ computer networks earlier this year and made off with a trove of data that could be used to target agencies

Following the news that the government is suggesting amendments to GDPR and removing the human review of AI decisions, cybersecurity experts commented below. Experts Comments September 11, 2021 Andy Patel

BACKGROUND: It has been reported that Fortinet has warned that 87,000 sets of credentials for FortiGate SSL VPN devices have been published online.  Experts Comments September 10, 2021 Jamie Lewis

BACKGROUND: It has been reported that Internet of Things (IoT) devices are more popular targets for cybercriminals than ever before, a new report from Kaspersky has claimed. The company says that

BACKGROUND: HP just released an HP Wolf Security report titled “Rebellions & Rejection”  in which 83% of IT Teams believe that working from home (WFH) has become a “Ticking Time Bomb”.  Report

Following the news that the operators behind the REvil ransomware group have resurfaced after allegedly closing shop following the widespread attack on Kaseya, please see below comments from security experts. Experts Comments