Breached Passwords Still in Use By Hundreds of Thousands
More than 300,000 users still utilize credentials that have been compromised – with people visiting video streaming and porn sites most at fault, Google found in a new study.
Featured news
News Wrap: DejaBlue Bugs and Biometrics Data Breaches
From the biometrics of one million being exposed, to new Microsoft Bluekeep-like threats, Threatpost discusses the top news of the week.
Energy Sector Phish Swims Past Microsoft Email Security via Google Drive
The savvy technique of avoiding malicious links in the email allowed the phishing attack to reach its targets.
ThreatList: 4.1B Records Exposed in Breaches in First Half of 2019
The number of exposed records has hit record highs in just the first two quarters.
Editor's Picks
Latest news
It’s been around forever, but in a modern digital era marked by influence campaigns and deep fakes, information warfare has become much easier to carry out.
Prevent account takeovers by upping your password game and locking out the bad guys. Here is how.
A collection of in-depth discussions on the cybersecurity topics that matter most.
Browse our curated content, contributed by the Threatpost community of industry experts, technical gurus and thought leaders.
Eight vulnerabilities in the HTTP/2 server implementations were found in vendors Amazon, Apple, Microsoft and Apache.
Newsmaker Interviews
-
Thousands of IoT Devices Bricked By Silex Malware
-
Newsmaker Interview: Bruce Schneier on Physical Cyber Threats
-
Newsmaker Interview: Troy Mursch on Top Botnet Trends
-
Chris Vickery on the Marriott Breach and a Rash of Recent High-Profile Hacks
-
Newsmaker Interview: Katie Moussouris on Improving Bug Bounty Programs
Most Recent ThreatLists
-
ThreatList: 4.1B Records Exposed in Breaches in First Half of 2019
-
ThreatList: DMARC Adoption Nonexistent at 80% of Orgs
-
ThreatList: Human Error is Behind One Quarter of Data Breaches
-
Threatlist: 68% of Overwhelmed IT Managers Can’t Keep Up with Cyberattacks
-
ThreatList: Ransomware Trojans Picking Up Steam in 2019
PodcastsView all
News Wrap: DejaBlue Bugs and Biometrics Data Breaches
From the biometrics of one million being exposed, to new Microsoft Bluekeep-like threats, Threatpost discusses the top news of the week.
Threatpost Podcasts: Going Beyond the Headlines
A collection of in-depth discussions on the cybersecurity topics that matter most.
TikTok Scammers Cash In On Adult Dating, Impersonation Tricks
Scammers are profiting from TikTok’s younger audience with adult dating and account impersonation tricks.
Black Hat 2019 News Wrap: The Best and Worst of the Show
Threatpost breaks down the highs and lows from Black Hat 2019, from new vulnerabilities and industry collaboration to a scandal around a sponsored session.
Sponsored Podcast: The Operationalization of Data With a Purpose
In this sponsored podcast, host Cody Hackett talks to SpyCloud’s Chip Witt about the operationalization of data.
Black Hat USA 2019 Preview
Threatpost editors discuss the top trends, keynotes and sessions that they look forward to at Black Hat USA and DEF CON 2019.
Cloud Security Concerns Loom for 93% of Businesses Adopting Apps and BYOD
During this week’s Threatpost Podcast, editor Lindsey O’Donnell talks to Jacob Serpa with Bitglass about how more enterprises are struggling with a cloud security conundrum when it comes to public cloud vs on prem.
Protecting Against Ransomware Attacks: A Checklist
In the second of a two part series discussing recent ransomware attacks against municipalities, Shawn Taylor with Forescout talks about how cities can protect themselves.
Amazon Alexa, Google Home On Collision Course With Regulation
In this week’s Threatpost Podcast, we talk to Tim Mackey with Synopsys about recent Amazon Echo and Google Home privacy faux pas. Will GDPR and other regulations catch up to the voice assistants?
VideosView all
Election Security Threats: From Misinformation to Voting Machine Flaws
From insecure voting machines to social media misinformation, governments have alot to think about when it comes to securing elections.
Security Vulnerabilities Are Increasingly Putting Kids at Risk
A kid’s tablet with security vulnerabilities is only the latest privacy faux pas in a children’s connected device.
Data Security in the Cloud: How to Lock Down the Next-Gen Perimeter
Enjoy the video replay of the recent Threatpost cloud security webinar, featuring a panel of experts offering best practices and ideas for managing data in a cloudified world.
Hackers Take Over IoT Devices to ‘Click’ on Ads
A video interview and Q&A with IoT specialist Dan Demeter of Kaspersky Lab.
Lax Telco Security Allows Mobile Phone Hijacking and Redirects
A Q&A with Kaspersky Lab researcher David Jacoby examines a gaping hole in the telco customer-service process that allows adversaries to commandeer phone calls.
Post-Perimeter Security: Addressing Evolving Mobile Enterprise Threats
Experts from Gartner, Lookout and Google talk enterprise mobile security in this webinar replay.
Insider Threats Get Mean, Nasty and Very Personal
Increasingly, attackers are targeting the most vulnerable people inside companies and exploiting their weaknesses.
Forrester: Ransomware Set to Resurge As Firms Pay Off Attacks
In this video, Josh Zelonis, senior analyst at Forrester Research, discusses the next great security threats to enterprises.
RSA Conference 2019: The Expanding Automation Platform Attack Surface
Hacking into smart homes is becoming increasingly easy and a great way to steal victims’ personal information, Trend Micro said at RSA 2019.
SlideshowView all
2019 Malware Trends to Watch
Here are 10 top malware trends to watch for in the New Year.
Top 2018 Security and Privacy Stories
The top cybersecurity and privacy trends that biggest impact in 2018.
2019: The Year Ahead in Cybersecurity
What are the top cyber trends to watch out for in 2019? Here’s what we’re hearing.
2018: A Banner Year for Breaches
A look back at the blizzard of breaches that made up 2018.
Slideshow: Intel from Virus Bulletin 2018
This year’s Virus Bulletin conference featured top-tier research from some of the world’s best threat intelligence experts.
Slideshow: Scenes from Black Hat USA 2013
Scenes from this year’s hacking conference in Las Vegas, Nev. include a keynote by General Keith B. Alexander, Director of the National Security Agency and talks by researchers Karsten Nohl and Ralf-Phillip Weinmann.
More from CanSecWest 2013
Pwn2Own, Pwnium Attract Dollars and 0-Days by the BushelGroundbreaking Cyber Fast Track Research Program EndingAt Pwn2Own, Browser Exploits Gett
Ryan McGeehan and Chad Greene
Ryan McGeehan, the director of incident response at Facebook and Chad Greene, the manager of the Facebook CERT on Thursday both explained how the social network has planned red team exercises in the past to prepare the company’s security team for a real attack.
Stefan Esser
Mobile security researcher Stefan Esser discussed the security model of Apple iOS and some of the recent changes the company has made to lock it down even further.