Women in Cyber Take the Spotlight
Women are key to solving the workforce shortage, which is expected to reach 3.5 million open jobs by 2022.
Featured news
Cobalt Group Pushes Revamped ThreadKit Malware
Threat actors have updated their malware to include a macro-based delivery framework.
Zero-Day Bug Fixed by Microsoft in December Patch Tuesday
Microsoft patches nine critical bugs as part of December Patch Tuesday roundup.
Linux.org Redirected to NSFW Page Spewing Racial Epithets
Administrators lost control of the domain for several hours in a DNS hijacking incident.
Editor's Picks
Latest news
Italy’s regulator found the social giant guilty of misleading consumers as to what it does with their data.
Consumers are growing angry when it comes to data misuse – but the real change will need to come from the tech industry’s culture when it comes to privacy.
The update includes a raft of critical code-execution problems.
The consumer version of Google+ will now be shut down in April instead of August after a bug was found that impacts at least 50 million users.
Most popular
-
Quora Breach Exposes a Wealth of Info on 100M Users
-
Facebook Defends Data Policies On Heels of Incriminating Internal Docs
-
TA505 Crooks are Now Targeting US Retailers with Personalized Campaigns
-
Microsoft Calls For Facial Recognition Tech Regulation
-
Google Accelerates Google+ Shutdown After New Bug Discovered
Newsmaker Interviews
-
Chris Vickery on the Marriott Breach and a Rash of Recent High-Profile Hacks
-
Newsmaker Interview: Katie Moussouris on Improving Bug Bounty Programs
-
Newsmaker Interview: Tom Kellermann on Hacking the Midterm Elections
-
Newsmaker Interview: Derek Manky on ‘Self-Organizing Botnet Swarms’
-
Newsmaker Interview: Troy Mursch on Why Cryptojacking Isn’t Going Away
Most Recent ThreatLists
-
ThreatList: Cryptominers Dominate Malware Growth in 2018
-
ThreatList: One-Third of Firms Say Their Container Security Lags
-
ThreatList: Google Play Nine Times Safer Than Third-Party App Stores
-
ThreatList: Despite Fraud Awareness, Password Reuse Persists for Half of U.S. Consumers
-
ThreatList: Fewer Big DDoS Attacks in Q3, Overall Rate Holds Steady
PodcastsView all
Podcast: Breaking Down the Magecart Threat (Part Two)
In part two of our podcast series on Magecart, we talk to expert Yonathan Klijnsma, who has been tracking the threat for years.
Threatpost News Wrap Podcast for Nov. 23
From Ford data security speculation to the VisionDirect data breach, the Threatpost editors talk about this week’s biggest stories.
Podcast: Breaking Down the Magecart Threat (Part One)
In the first part of our podcast series, we talked to Rapid7’s chief data scientist about how Magecart has changed.
Podcast: Why ‘Throwing Money’ at Threats Won’t Work
How can businesses create an effective cyber defense strategy? It starts with defining success, an expert tells us.
Podcast: IoT Firms Face a ‘Tidal Wave’ of Lawsuits, Attorney Explains
An attorney in the infamous 2015 Jeep hack predicts that more lawsuits related to IoT security are looming in the future.
Threatpost News Wrap Podcast for Nov. 9
The Threatpost editors break down the top news stories from this week.
Podcast: Troy Hunt Talks Bad Passwords – and Who’s to Blame for Them
Troy Hunt sounds off on how both consumers and services have a joint role in creating and enforcing strong passwords.
Podcast: A Utility Ransomware Attack, Post-Hurricane
What are utility and power companies, and federal agencies, doing to ready themselves for potential ransomware attacks? Threatpost discusses.
Threatpost News Wrap Podcast For Oct. 12
Threatpost’s editors discuss the top news of this week.
VideosView all
Video: Bishop Fox on Device Threats and Layered Security
Bishop Fox’s Christie Terrill talks to us about IoT security and other trends at Black Hat 2018 this month.
Black Hat Exclusive Video: The IoT Security Threat Looms for Enterprises
Armis’ CTO discusses the top IoT security issues in the marketplace today – and whether device manufacturers will start to prioritize security.
Black Hat Video Exclusive: Mobile APTs Redefining Phishing Attacks
Mike Murray, vice president of security intelligence at Lookout, discusses how mobile is redefining phishing, taking it out of the traditional inbox and into SMS and Facebook messages.
Akamai CSO Talks Cryptominers, IoT and the Reemergence of Old Threats
Andy Ellis, CSO Akamai, discusses how the company works with others within the cybersecurity landscape to help keep the internet safe.
HackerOne CEO Talks Bug Bounty Programs at RSA Conference
Can bug bounty programs be designed to protect consumer privacy and how do programs balance white hat disclosure versus companies sitting on vulnerabilities until they are fixed?
A Closer Look at APT Group Sofacy’s Latest Targets
Threatpost talks to Kaspersky Lab researcher Kurt Baumgartner who was instrumental in tracking the latest activities of the Russian-speaking Sofacy APT gang.
Programs Controlling ICS Robotics Are ‘Wide Open’ to Vulnerabilities
Dewan Chowdhury, founder of MalCrawler, talks at SAS about the risks that companies face when securing their industrial control systems and robotics.
The ‘Perfect Storm’ of Disinformation and Hacking
Matt Tait gives a list of examples throughout history where politically motivated groups have used disinformation and hacking as part of a campaign to shape public opinion.
Cisco Warns of Critical Flaw in Voice OS-based Products
Cisco Systems issued patch that fixes a critical vulnerability impacting 12 products running the Cisco Voice Operating System software.
SlideshowView all
Slideshow: Intel from Virus Bulletin 2018
This year’s Virus Bulletin conference featured top-tier research from some of the world’s best threat intelligence experts.
Slideshow: Scenes from Black Hat USA 2013
Scenes from this year’s hacking conference in Las Vegas, Nev. include a keynote by General Keith B. Alexander, Director of the National Security Agency and talks by researchers Karsten Nohl and Ralf-Phillip Weinmann.
More from CanSecWest 2013
Pwn2Own, Pwnium Attract Dollars and 0-Days by the BushelGroundbreaking Cyber Fast Track Research Program EndingAt Pwn2Own, Browser Exploits Gett
Ryan McGeehan and Chad Greene
Ryan McGeehan, the director of incident response at Facebook and Chad Greene, the manager of the Facebook CERT on Thursday both explained how the social network has planned red team exercises in the past to prepare the company’s security team for a real attack.
Stefan Esser
Mobile security researcher Stefan Esser discussed the security model of Apple iOS and some of the recent changes the company has made to lock it down even further.
Chaouki Bekrar
The team from French research firm VUPEN, including CEO Chaouki Bekrar, has dominated the Pwn2Own hacking contest, taking down several targets, including Internet Explorer 10, Java and Mozilla Firefox. They plan to attack Adobe Flash on Thursday.
Mudge on the CFT
Peiter Zatko, also known as Mudge, has run the DARPA Cyber Fast Track program for the last three years, but he said that the researcher program is ending on April 1. The CFT program funded a wide range of security research projects in its time, including Charlie Miller’s NFC work and Moxie Marlinspike’s Convergence system.
Vancouver, British Columbia
The CanSecWest conference in Vancouver attracts some of the top security researchers from around the world each year.
More from the Kaspersky Lab/Threatpost Security Analyst Summit
Chris Soghoian on Wireless Carriers and Android SecurityPartial Disclosure Leaves Adobe Reader Zero-Day Story in Limbo