Ionut Arghire

Over the past several months, threat actors have been increasingly targeting Office 365 and G Suite cloud accounts that are using the legacy IMAP...

Google is making G Suite accounts more secure by allowing administrators to remove phone-based 2-step verification (2-SV) from the available multi-factor verification options.

WordPress this week addressed a vulnerability that could allow an unauthenticated attacker to execute code remotely and take over vulnerable websites. 

Vulnerabilities discovered by IBM security researchers in five different visitor management systems could be abused for data exfiltration or for access to the underlying machines. 

Cloud and application security provider F5 Networks is acquiring NGINX, a provider of technologies for application development and delivery, for approximately $670 million. 

Box enterprise shared links can leak sensitive information if access to them hasn’t been restricted to relevant users only, Adversis security researchers warn.

The massive Equifax data breach that impacted 148 million Americans in 2017 was the result of years of poor cybersecurity practices, a new Staff...

Vulnerability research firm Crowdfense has launched a new 0-day acquisition program and is promising payouts of up to $3 million for full-chain, previously unreported...

Google has introduced a new set of services to provide cloud customers with improved protection from unsafe websites, distributed denial of service (DDoS) attacks,...

An unprotected MongoDB database was recently found exposing over 800 million records, including email addresses and phone numbers. Discovered on February 25 by security researcher...

Google this week released information on a zero-day vulnerability in Windows being actively exploited in targeted attacks alongside a recently fixed Chrome flaw (CVE-2019-5786).

Runtime encryption company Fortanix has launched a free and open source software development kit (SDK) for building Intel Software Guard Extensions (SGX) applications.

Boston-based privileged access security provider CyberArk this week announced it can now automate detection, alerting and response for unmanaged and potentially risky Amazon Web...

A vulnerability Google patched last week in the Chrome browser had been already exploited in the wild.

Cyber-security provider Secureworks this week announced it can now help organizations better protect their environments with its new Orchestration and Automation solution.Announced at the...

The United States National Security Agency (NSA) this week released its in-house reverse engineering tool Ghidra to the public, for free.

The Iran-linked Chafer threat group has used a new Python-based backdoor in November 2018 attacks targeting a Turkish government entity, Palo Alto Networks reveals. 

APT40 Hackers Appear to be Supporting China's Belt and Road Initiative

Endpoint security firm CrowdStrike on Monday announced CrowdStrike Falcon for Mobile, an enterprise endpoint detection and response (EDR) solution for mobile devices.

Over the weekend, Microsoft started rolling out a new software update for Windows 10 devices to enable the Retpoline mitigations against Spectre attacks.