Bogus AmEx notification leads to thorough phishing
American Express-themed phishing emails are never out of circulation, but it pays to know which new (or recycled) angle is being used at the moment. The latest one to hit …
Bogus “Royal Baby: Live Updates” email leads to malware
As expected, news of the new birth in the British Royal Family has become a perfect lure in malware delivery schemes. ThreatTrack has spotted an email titled “The Royal …
Lessons learnt from the Lakeland attack
Last Friday, the British Kitchenware store, Lakeland, suffered a major data breach that involved two encrypted databases. To make things worse, the company doesn’t know …
E-commerce fraud prevention service from Trusteer
Trusteer announced its Cybercrime Prevention Architecture for e-commerce, which provides “bank grade” security to retailers, social media, dating, gaming and other …
72% can’t securely manage multiple computing environments
AppSense and CTOVision announced the results of a survey that included responses from 245 executives, technologists and contractors – across the defense, intelligence …
Increase in malicious DNS request traffic
With regard to the OpUSA hacktivist campaign, Solutionary discovered that attackers responsible for previous DDoS attacks on the financial sector leveraged a variety of …
SailPoint unveils IAM-as-a-Service suite
SailPoint announced IdentityNow, an IAM-as-a-service (IDaaS) that delivers enterprise-grade identity governance, provisioning and access management in a single, unified …
SIM encryption flaw opens 500M users to attack
A flaw in the encryption technology used by some SIM cards can allow attackers to make the target phone download malicious apps and even effectively clone a user’s card …
Syrian hackers hit Tango, The Daily Dot
Pro-Assad hacker group the Syrian Electronic Army claims to have breached the back-up database of Tango, the company behind the popular eponymous app, and to have exfiltrated …
HTML ransomware goes global
Last week we saw that a ransomware scheme does not need to involve actual malware, as clever cyber crooks leveraged browsers’ “restore from crash” feature to …
Cisco to acquire Sourcefire for $2.7 billion
Cisco will acquire Sourcefire, a provider of cybersecurity solutions. The acquisition adds a team with deep security DNA to Cisco and will accelerate delivery of Cisco’s …
U.S. the number one source of web attacks
Retailers suffer twice as many SQL injection attacks as other industries, according to Imperva. Additionally, these attacks were more intense, both in terms of number of …
Featured news
Resources
Don't miss
- Building cyber resilience in always-on industrial environments
- Breaking the cycle of attack playbook reuse
- Kanister: Open-source data protection workflow management tool
- Flaw in Notepad++ installer could grant attackers SYSTEM access (CVE-2025-49144)
- Windows 10: How to get security updates for free until 2026