LastPass has revealed that an unauthorised party gained access to its development environment through a compromised developer account.
Stories by John P. Mello Jr.
Security spending is not expected to slow much next year as organisations look to improve cloud defences and rely more on MSSPs.
Network misconfigurations cost companies an average of nine per cent of annual revenues, according to a study released by a network security company.
Microsoft's decision to turn off Office macros by default has had a significant impact on the use of the mini-programs by hackers.
An underground economy that mirrors its legitimate e-commerce counterpart is supercharging online criminal behaviour, according to HP findings.
Deloitte has announced an update to its XDR platform, designed to boost capabilities to collect intelligence, hunt for threats, and secure mobile devices.
Errors that allow SQL injection and cross-site scripting attacks are still the top vulnerabilities that pen-testers find, especially at smaller companies.
Lessons learned from software supply chain breach lead to innovative and secure development scheme.
Companies are still struggling to gain confidence in the security of their open source projects, but shifting security earlier in the development process shows promise.
On the one-year anniversary of the Colonial Pipeline attack, industry insiders reflect on the event's effect on cyber security practice and perception.
Researchers at Trend Micro have discovered some new Linux-based ransomware that's being used to attack VMware ESXi servers.
CISOs are also less concerned about ransomware attacks, but many says their organisations are still not properly prepared for them.
Suspected state-sponsored threat actor uses IceApple to target technology, academic and government sectors with deceptive software.
Misconfiguration of the Google Cloud Platform API could create an exploitable behaviour that leads to service compromise.
Network threat prevention, muscular analytics, and BYOD management are among new features offered in enhanced application suite.