Is Privacy Really iPhone? Researchers Weigh in on Apple’s Targeted Ad Tracking
A unique identifier is enabled by default on every iPhone that’s shipped, allowing advertisers to follow the phone’s activity across the web.
Featured news
Exploits for Social Warfare WordPress Plugin Reach Critical Mass
More and more attacks taking advantage of a XSS and RCE bug in the popular plugin have cropped up in the wild.
France’s ‘Secure’ Telegram Replacement Hacked in an Hour
The messaging app that will replace the government’s use of WhatsApp and Telegram was released last week, with security vulnerability included.
Three-Fourths of Consumers Don’t Trust Facebook, Threatpost Poll Finds
On the heels of several Facebook data privacy snafus this week – and over the past year – users no longer trust the platform.
Editor's Picks
Latest news
Overall, in 2018 the FBI received more than 351k reported scams with losses exceeding $2.7 billion.
China-based app maker ignored repeated warnings by researchers that its password database – stored in plain text – was accessible to anyone online.
The attack is targeting financial regulators and embassy staff– but probably isn’t the work of an APT.
The malware researcher has pleaded guilty to two out of 10 charges; one with creating the Kronos malware and the other with conspiracy.
The information includes data on all rehab treatments and procedures, linked with patients’ names and other info.
Most popular
-
Millions of Medical Documents for Addiction and Recovery Patients Leaked
-
Researchers: Facebook’s Data-Leveraging Scandal Puts Users on Notice
-
Weather Channel Knocked Off-Air in Dangerous Precedent
-
Easter Attack Affects Half a Billion Apple iOS Users via Chrome Bug
-
ThreatList: Bad Bots Account for a Fifth of All Web Traffic, FinServ Hit the Worst
Newsmaker Interviews
-
Newsmaker Interview: Bruce Schneier on Physical Cyber Threats
-
Newsmaker Interview: Troy Mursch on Top Botnet Trends
-
Chris Vickery on the Marriott Breach and a Rash of Recent High-Profile Hacks
-
Newsmaker Interview: Katie Moussouris on Improving Bug Bounty Programs
-
Newsmaker Interview: Tom Kellermann on Hacking the Midterm Elections
Most Recent ThreatLists
-
ThreatList: Bad Bots Account for a Fifth of All Web Traffic, FinServ Hit the Worst
-
ThreatList: Tax Scammers Launch a Raft of Fake Mobile Apps
-
ThreatList: Half of All Attacks Aim at Supply Chain
-
ThreatList: Game of Thrones, a Top Malware Conduit for Cybercriminals
-
ThreatList: Remote Workers Threaten 1 in 3 Organizations
PodcastsView all
SAS 2019: Fake News Peddlers Adopt Clever New Trick to Fool Facebook, Twitter
At SAS 2019, Recorded Future CTO discusses a new kind of high-profile influence campaign spotted using a new technique: Old news.
SAS 2019: Joe FitzPatrick Warns of the ‘$5 Supply Chain Attack’
At the Security Analyst Summit, Threatpost editor Tara Seals catches up with Joe FitzPatrick, researcher with Securing Hardware, to discuss supply chain threats.
Podcast: Chris Vickery on UpGuard’s Discovery of Millions of Facebook Records
Chris Vickery with UpGuard, who discovered two datasets exposing millions of Facebook records, discusses his findings and the implications of data collection with Threatpost.
Podcast: The High-Risk Threats Behind the Norsk Hydro Cyberattack
Threatpost talks to Phil Neray with CyberX about Tuesday’s ransomware attack on aluminum producer Norsk Hydro, and how it compares to past manufacturing attacks like Triton, WannaCry and more.
RSA Conference 2019 Recap
From privacy to patches, Threatpost editors discuss the biggest infosec news and trends that they saw this week at RSA Conference 2019.
RSA Conference 2019: Data-Wiping Cyberattacks Plague Financial Firms
A new report outlines the cyberattacks and threats that financial firms are facing.
RSA Conference 2019: Picking Apart the Foreshadow Attack
Raoul Strackx, one of the researchers who discovered the Foreshadow speculative execution vulnerability, talks at RSA about the Catch-22 issue when it comes to fixing speculative execution flaws.
Podcast: RSA Conference 2019 Preview
The Threatpost team talks about the biggest cybersecurity stories, trends and research we’ll see at RSA this year.
Threatpost News Wrap Podcast For Feb. 22
From password manager vulnerabilities to 19-year-old flaws, the Threatpost team broke down this week’s biggest news stories.
VideosView all
Post-Perimeter Security: Addressing Evolving Mobile Enterprise Threats
Experts from Gartner, Lookout and Google talk enterprise mobile security in this webinar replay.
Insider Threats Get Mean, Nasty and Very Personal
Increasingly, attackers are targeting the most vulnerable people inside companies and exploiting their weaknesses.
Forrester: Ransomware Set to Resurge As Firms Pay Off Attacks
In this video, Josh Zelonis, senior analyst at Forrester Research, discusses the next great security threats to enterprises.
RSA Conference 2019: The Expanding Automation Platform Attack Surface
Hacking into smart homes is becoming increasingly easy and a great way to steal victims’ personal information, Trend Micro said at RSA 2019.
RSA Conference 2019: Emotet Takes Aim at Latin America
RAT activity in Latin America and Asia ramped up at the end of 2018, indicating widespread coordinated targeting by threat actors.
RSA Conference 2019: Firms Continue to Fail at IoT Security
IoT is growing more popular in the home – and so too are the attacks that target these devices featuring valuable data, researchers said at RSA 2019.
RSA Conference 2019: BleedingBit Flaws Continue to Plague Firms
BleedingBit’s impact continues to spread across various devices, researchers at RSA Conference 2019 said.
RSA Video 2019: How to Defend Against an AI vs AI ‘Flash War’
Offensive cyber attack chains are accelerating rapidly thanks to a combination of artificial intelligence, machine learning and broadening threat landscape.
RSA Conference 2019: BEC Scammer Gang Takes Aim at Boy Scouts, Other Nonprofts
A scammer ring dubbed Scarlet Widow has targeted nonprofits, schools and universities with an array of business email compromise (BEC) attacks over the past few months.
SlideshowView all
2019 Malware Trends to Watch
Here are 10 top malware trends to watch for in the New Year.
Top 2018 Security and Privacy Stories
The top cybersecurity and privacy trends that biggest impact in 2018.
2019: The Year Ahead in Cybersecurity
What are the top cyber trends to watch out for in 2019? Here’s what we’re hearing.
2018: A Banner Year for Breaches
A look back at the blizzard of breaches that made up 2018.
Slideshow: Intel from Virus Bulletin 2018
This year’s Virus Bulletin conference featured top-tier research from some of the world’s best threat intelligence experts.
Slideshow: Scenes from Black Hat USA 2013
Scenes from this year’s hacking conference in Las Vegas, Nev. include a keynote by General Keith B. Alexander, Director of the National Security Agency and talks by researchers Karsten Nohl and Ralf-Phillip Weinmann.
More from CanSecWest 2013
Pwn2Own, Pwnium Attract Dollars and 0-Days by the BushelGroundbreaking Cyber Fast Track Research Program EndingAt Pwn2Own, Browser Exploits Gett
Ryan McGeehan and Chad Greene
Ryan McGeehan, the director of incident response at Facebook and Chad Greene, the manager of the Facebook CERT on Thursday both explained how the social network has planned red team exercises in the past to prepare the company’s security team for a real attack.
Stefan Esser
Mobile security researcher Stefan Esser discussed the security model of Apple iOS and some of the recent changes the company has made to lock it down even further.