Facebook Alleges Company Infiltrated User Accounts for Ad Fraud
Facebook has paid over $4 million to victims to reimburse them for the unauthorized ads purchased using their ad accounts.
Featured news
AT&T, Verizon Subscribers Exposed as Mobile Bills Turn Up on the Open Web
Names, addresses, phone numbers, call and text message records and account PINs were all caught up in a cloud misconfiguration.
Feds Offer $5M Reward to Nab ‘Evil Corp’ Dridex Hacker
Authorities cracked down on cybercrime group Evil Corp. with sanctions and charges against its leader, known for his lavish lifestyle.
Ransomware Attack Hits Data Center Provider CyrusOne: Report
Security experts say the incident shows that cybercriminals are using ransomware to hit companies where it hurts.
Editor's Picks
Latest news
Most counties are not protected from impersonation-based spearphishing attacks.
Authorities say they have halted over 600 domestic money mules – exceeding the 400 money mules stopped last year.
In this past week, the authorities have cracked down on various BEC scams and cybercrime gangs.
In a coffee-shop scenario, attackers can hijack “secure” VPN sessions of those working remotely, injecting data into their TCP streams.
Researcher discovered a MacOS trojan hiding behind a fake crypto trading platform believed to be the work of the state-sponsored North Korean hackers behind WannaCry.
Newsmaker Interviews
Most Recent ThreatLists
-
ThreatList: 90% of SMBs Believe Nation-State Actors Are Targeting Them
-
ThreatList: A Third of Biometric Systems Targeted by Malware in Q3
-
ThreatList: Admin Rights for Third Parties is the Norm
-
ThreatList: Most Retail Hardware Bug Bounty Flaws Are Critical
-
ThreatList: Sharp Increase in Fake Mobile Apps Impersonating Legit Ones
PodcastsView all
News Wrap: Authorities Target Evil Corp., Imminent Monitor, Money Mules
In this past week, the authorities have cracked down on various BEC scams and cybercrime gangs.
EFF Talks the Corporate Surveillance of Consumers
The EFF explains how data is being tracked and used on the web and mobile devices, how consumers can protect themselves – and why it’s not all bad news.
Black Friday Shoppers Targeted By Scams and Fake Domains
Cybercriminals are tapping in on Black Friday and Cyber Monday shoppers with an array of scams and malware – including domain impersonation, social media giveaway scams, and a malicious Chrome extension.
News Wrap: Amazon Ring Risks, Stalkerware, and D-Link Router Flaws
From stalkerware to Amazon Ring doorbell outrage, Threatpost editors break down the top news stories of the week.
Google Discloses Android Camera Hijack Hack
Google has disclosed a now-fixed issue that enabled third-party apps to access a disturbing set of permissions for its Camera App built into Android phones.
Podcast: Managing an Out-Of-Control Security Tech Stack
What are the best practices when evaluating security vendors in a crowded landscape? Arctic Wolf discusses.
ENFUSE 2019: Security Regulations, Insider Threats, and IoT Privacy Risks
Threatpost sits down with incident response expert Kevin Golas to discuss the top takeaways of ENFUSE 2019 this week.
News Wrap: Voice Assistant Laser Hack, Twitter Insider Threats, Data Breach Fine Fails
From voice assistant hacks to insider threats, Threatpost editors break down this week’s biggest news.
Emotet Resurgence Continues With New Tactics, Techniques and Procedures
Since Emotet came out of hibernation last month, researchers are seeing the banking trojan’s authors take on a consistent trend of new evasion tactics and social engineering techniques.
VideosView all
‘Wildly Different’ Privacy Regulations Causing Compliance Chaos
Threatpost talks to Anthony di Bello with OpenText, at ENFUSE 2019, about the successes and failures of security regulations, and how companies are changing as they struggle to keep up with compliance issues.
California’s Domino Effect on U.S. Privacy Regulation
In this video, a security expert discusses the California Consumer Privacy Act (CCPA), and its potential impact on privacy regulation across the U.S.
Post-GandCrab, Cybercriminals Scouring the Dark Web for the Next Top Ransomware
A detailed look at underground forums shows that cybercriminals aren’t sure where to look on the heels of the GandCrab ransomware group shutting its doors – and low-level actors are taking advantage of that by developing their own strains.
Election Security Threats: From Misinformation to Voting Machine Flaws
From insecure voting machines to social media misinformation, governments have alot to think about when it comes to securing elections.
Security Vulnerabilities Are Increasingly Putting Kids at Risk
A kid’s tablet with security vulnerabilities is only the latest privacy faux pas in a children’s connected device.
Data Security in the Cloud: How to Lock Down the Next-Gen Perimeter
Enjoy the video replay of the recent Threatpost cloud security webinar, featuring a panel of experts offering best practices and ideas for managing data in a cloudified world.
Hackers Take Over IoT Devices to ‘Click’ on Ads
A video interview and Q&A with IoT specialist Dan Demeter of Kaspersky Lab.
Lax Telco Security Allows Mobile Phone Hijacking and Redirects
A Q&A with Kaspersky Lab researcher David Jacoby examines a gaping hole in the telco customer-service process that allows adversaries to commandeer phone calls.
Post-Perimeter Security: Addressing Evolving Mobile Enterprise Threats
Experts from Gartner, Lookout and Google talk enterprise mobile security in this webinar replay.
SlideshowView all
2019 Malware Trends to Watch
Here are 10 top malware trends to watch for in the New Year.
Top 2018 Security and Privacy Stories
The top cybersecurity and privacy trends that biggest impact in 2018.
2019: The Year Ahead in Cybersecurity
What are the top cyber trends to watch out for in 2019? Here’s what we’re hearing.
2018: A Banner Year for Breaches
A look back at the blizzard of breaches that made up 2018.
Slideshow: Intel from Virus Bulletin 2018
This year’s Virus Bulletin conference featured top-tier research from some of the world’s best threat intelligence experts.
Slideshow: Scenes from Black Hat USA 2013
Scenes from this year’s hacking conference in Las Vegas, Nev. include a keynote by General Keith B. Alexander, Director of the National Security Agency and talks by researchers Karsten Nohl and Ralf-Phillip Weinmann.
More from CanSecWest 2013
Pwn2Own, Pwnium Attract Dollars and 0-Days by the BushelGroundbreaking Cyber Fast Track Research Program EndingAt Pwn2Own, Browser Exploits Gett
Ryan McGeehan and Chad Greene
Ryan McGeehan, the director of incident response at Facebook and Chad Greene, the manager of the Facebook CERT on Thursday both explained how the social network has planned red team exercises in the past to prepare the company’s security team for a real attack.
Stefan Esser
Mobile security researcher Stefan Esser discussed the security model of Apple iOS and some of the recent changes the company has made to lock it down even further.