Fashion retailer Forever 21 notified customers of a potential data breach at certain stores from March through October of 2017.
On Tuesday, Microsoft issued patches to address 53 vulnerabilities, to include 20 critical fixes, as part of November security updates. Also noteworthy was four of the fixes addressed vulnerabilities with known public exploits (CVE-2017-11848, CVE-2017-11827, CVE-2017-11883 and CVE-2017-8700).
IBM researchers discovered a new way hackers are trying to evade antivirus (AV) software detections using a popular automation tool AutoIT.
Palo Alto's Unit 42 security group has discovered a new malware family called Reaver with links to Chinese espionage group, also known for using SunOrcal malware.
WikiLeaks has released a new series of leaks, called Vault 8, that contains source code and analysis for software designed to run on servers controlled by the CIA.
Appthority has discovered a significant data exposure vulnerability called Eavesdropper that impacts nearly 700 enterprise apps associated with 85 Twilio developer accounts.
Symantec has spotted a previously unknown cyber espionage group called Sowbug that targets South American and Southeast Asian governments.
McAfee Advanced Threat Research analysts have spotted new malicious techniques used by the APT28 threat group.
Cyber security and investment experts offer good advice on how users can protect cryptocurrencies, such as Bitcoin and Ethereum, from hackers.
Insider threats can be malicious or inadvertant, but the consequences can lead to costly brand damage or significant financial losses to your company. Understanding the types of insider threats and corresponding risk indicators can help minimize impact and damage caused by such threats.