The First Stop For Security News
Updated: 33 min 7 sec ago
The flaws have been confirmed by Grandstream, but no firmware update has yet been issued.
Three have been charged in alleged connection with the recent high-profile Twitter hack - including a 17-year-old teen from Florida who is the reported "mastermind" behind the attack.
The corporate-travel leader has confirmed an attack that knocked systems offline.
Researchers uncovered a disinformation campaign aiming to discredit NATO via fake news content on compromised news websites.
Hackers "mislead certain employees" to gain access to internal tools to take over high-profile accounts and push out a Bitcoin scam.
Threatpost editors break down the top themes, speakers and sessions to look out for this year at Black Hat 2020 - from election security to remote work and the pandemic.
Zoom has fixed the issue, which stemmed from a lack of checks against incorrect passcode attempts.
The malware is a new payload that uses Dogecoin wallets for its C2, and spreads via the Ngrok botnet.
The flaw could allow a remote, unauthenticated attacker to bypass authentication on vulnerable devices.
A vulnerability in the state’s system may have exposed personal data that can be used for credential theft for those who filed Property Transfer Tax returns online.
Adobe has released patches for critical and important-severity flaws in its popular Magento e-commerce platform.
The "BootHole" bug could allow cyberattackers to load malware, steal information and move laterally into corporate, OT ,IoT and home networks.
Gear from Secomea, Moxa and HMS Networks are affected by remote code-execution flaws, researchers warn.
WordPress plugin Comments – wpDiscuz, which is installed on over 70,000 sites, has issued a patch.
Algorithms clocked error rates of between 5% to 50% when comparing photos of people wearing digitally created masks with unmasked faces.
Attackers could exploit various flaws in OkCupid's mobile app and webpage to steal victims' sensitive data and even send messages out from their profiles.
A new ransomware, VHD, was seen being delivered by the nation-state group's multiplatform malware platform, MATA.
Derek Manky, Chief, Security Insights & Global Threat Alliances at Fortinet's FortiGuard Labs, discusses the top threats and lessons learned from the first half of 2020.
A path traversal vulnerability in the iDRAC technology can allow remote attackers to take over control of server operations.
Researchers can earn up to $100,000 for finding vulnerabilities in Microsoft's revamped Windows Insider Preview bug bounty program.