A Log4J Vulnerability Has Set the Internet ‘On Fire’

The flaw in the logging framework has security teams scrambling to put in a fix.

A Year After SolarWinds, Supply Chain Threats Still Loom

The Russia-led campaign was a wake-up call to the industry, but there's no one solution to…

NSO Group Spyware Hits at Least 9 US State Department Phones

The incident lays bare how hollow the surveillance company’s reassurances about the limits of its hacking…

Facebook Will Force More At-Risk Accounts to Use Two-Factor

The platform joins Google and others in requiring stronger protections for its most vulnerable users.

What Is a Watering Hole Attack?

It's a technique that can hit thousands of victims—through no fault of their own.

Devious ‘Tardigrade’ Malware Hits Biomanufacturing Facilities

The surprisingly sophisticated attack is “actively spreading” throughout the industry.

How Iran Tried to Undermine the 2020 US Presidential Election

From faked emails to a hacked voter registration database, a new indictment offers fresh details on…

‘Ghostwriter’ Looks Like a Purely Russian Op—Except It’s Not

Security researchers have found signs that the pervasive hacking and misinformation campaign comes not from Moscow…

Hackers Targeted Hong Kong Apple Devices in Widespread Attack

Visitors to pro-democracy and media sites in the region were infected with malware that could download…

The Biggest Ransomware Bust Yet Might Actually Make an Impact

By arresting one alleged hacker associated with REVil and seizing millions from another, the US has…