Security news that informs and inspires

SEARCH

All Articles

Browse by Category:
Duo Labs Industry Events Industry News passwords Product & Engineering
Browse by Tag:
Government Podcast Privacy Microsoft Malware Ransomware Vulnerability Data Breaches Google Encryption Apple Phishing 2fa Hardware Iot Security Apt Android Ciso Supply Chain Cybercrime Cloud Solarwinds Hacker Movies Internet Black Hat Facebook Labs Research Botnet Cisa Linux Patching Government Agencies Vulnerabilities Log4j Windows Patch Vpn Software Security Apache Open Source Legislation Bug Bounty Networking Gdpr Critical Infrastructure Security Mobile Mozilla Magecart Disinformation Vmware
2349 articles:

Decipher Podcast: Sherrod DeGrippo

Proofpoint's Sherrod DeGrippo discusses the top malware trends of the past year, including Emotet's takedown and eventual return.

Podcast, Emotet, Malware

Deciphering Die Hard 2

Zoe Lindsey, Pete Baker, and Dennis Fisher sit down to talk about Die Hard 2, the forgotten member of the Die Hard series, which is not a Christmas movie. It is, however, a movie with a lot of great hacking and social engineering scenes, and Bruce Willis spewing one-liners like a 1950s standup comic.

Hacker Movies, Podcast

Decipher Library: Holiday Edition 2021

The editors of Decipher have compiled a list of book recommendations for you to enjoy during the holiday break.

Library, Books

Nation-State Attackers Targeted Airline With New Backdoor

The Iran-linked threat group targeted an Asian airline in what researchers believe is an espionage cyberattack.

Backdoors, Airlines, Cyberattack

Decipher Podcast: Source Code 12/17

This week's Source Code podcast by Decipher takes a look behind the scenes at top news with input from our sources.

Source Code, Podcast

CISA Issues Emergency Directive For Log4j Flaw

Federal agencies have until Dec. 23 to track down systems vulnerable to Log4j and apply patches or mitigations.

Log4j, CISA, Patch

New Log4j Flaw Allows Remote Code Execution

The newer Log4j vulnerability (CVE-2021-45046) can allow remote code execution in some circumstances on macOS.

Log4j, Apache

Lawmakers Put Pressure on Spyware Vendors

A group of 18 lawmakers are calling on the Biden administration to sanction surveillance technology firms for enabling "human rights abuses."

Spyware, Government Agencies

Log4j Attacks Spread as State Actors Target Bug

State actors from China, Iran, North Korea and other countries are targeting the Log4j (CVE-2021-44228) flaw.

Log4j, Apache

Microsoft Fixes Spoofing Flaw Used in Emotet Attacks

Attackers were attempting to exploit the flaw to distribute the Emotet, Trickbot and Bazaloader malware.

Microsoft, Patch Tuesday

Q&A: John Hammond

John Hammond of Huntress discusses the seriousness of the Apache Log4j vulnerability, the community response, and how attackers are exploiting it.

Log4j, Apache

Apple Fixes Critical Kernel Flaws in iOS and macOS

Apple has released iOS 15.2 and macOS Monterey 12.1, which both include dozens of security fixes for critical flaws.

Apple

Google Fixes High-Severity Chrome Zero Day

The use-after-free flaw (CVE-2021-4102) has been fixed in Chrome version 96.0.4664.110 for Windows, Mac and Linux. Learn more about it.

Google Chrome, Google, Chrome Security, Zero Day

Critical Log4j Flaw Fallout Continues

The widespread usage of Log4j is adding complexity to organizations attempting to apply patches.

Vulnerability, Java, Java Vulnerabilities, Java Exploit

Decipher Podcast: John Hammond

John Hammond of Huntress joins Dennis Fisher to discuss the critical Log4j vulnerability, the community response, and the potential long-term effects of the bug.

Podcast