Автор: Nate Nelson, Contributing Writer

A simple toggle in Proofpoint’s email service allowed for brand impersonation at an industrial scale. It prompts the question: Are secure email gateways (SEGs) secure enough?

Law firms make the perfect target for extortion, so it’s no wonder that ransomware attackers target them and demand multimillion dollar ransoms.

Significant upcoming legislation promises to tighten the screws on cyber incident response in Australia, mirroring CIRCIA in the US.

With sufficient privileges in Active Directory, attackers only have to create an "ESX Admins" group in the targeted domain and add a user to it.

The campaign is laser-targeted, bucking the trend of "spray-and-pray" malicious open source packages turning up in code repositories seemingly every other day.

Phishing and fraud surges during any national news story. This time though, the activity is both more voluminous and more targeted.

The good news: Only organizations far behind on standard Windows patching have anything to worry about.

The cohort’s variety of individual tools covers just about any operating system it could possibly wish to attack.

An illegal gambling empire fueled by modern-day slavery is being propped up by high-profile sponsorships — and defended with sophisticated anti-detection software.

Private sector organizations are "hesitant" to seek guidance from the Coast Guard, which isn’t sufficiently equipped to help them yet.