Office 365: A Vehicle for Internal Phishing Attacks A new threat uses internal accounts to spread phishing attacks, making fraudulent emails even harder to detect.
The Active Directory Botnet It's a nightmare of an implementation error with no easy fix. Ty Miller and Paul Kalinin explain how and why an attacker could build an entire botnet inside your organization.
Ransomware Is Going More Corporate, Less Consumer Cybercriminals on average charge $544 for ransom per device, signaling a new sweet spot for payouts.
Execs Underestimate Risks to Oracle EBS It's another sign that ERP keeps getting short shrift on the security front.
St. Jude Pacemaker Gets Firmware Update 'Intended as a Recall' The devices that were the subject of a vulnerability disclosure debate last summer now have an FDA-approved fix.
Hacking the Security Job Application Process Simple advice to help job seekers dig out of the black hole of recruiter and employer hiring portals.
Cloud Security Alliance Offers Metrics for Cyber Resiliency As cyberattacks grow in scale and complexity, businesses need metrics and processes to measure threats and restore functionality.
Russian-Speaking Turla Group Uses New Tools to Target Embassies, Consulates Turla cyber espionage gang has been around for a long time and appears to be back in action after a temporary lull.
'Onliner' Spambot Amassed Hundreds of Millions of Stolen Email Addresses Massive spambot relying on stolen email addresses, credentials, and SMTP and port information to expand.