In this Threatpost op-ed, Dave Dittrich and Katherine Carpenter explain the dangers of conflating measurable events, or observables, with indicators of compromise, which require context and other constructs to provide true threat intelligence.
Messaging platform firm Viber is adding end-to-end encryption to 711 million of its users, becoming the latest tech firm to embrace encryption on a massive scale.
Researchers at Endgame have found new versions of TeslaCrypt in the past few weeks that target a host of new and unusual file extensions, and deploy new obfuscation and evasion techniques.
Oracle fixed 136 vulnerabilities across 46 different products this week as part of its regularly scheduled Critical Patch Update.
Researcher Patrick Wardle has developed a utility called RansomWhere? that he released today that he says does generic ransomware detection on OS X.
BlackBerry’s CEO defended the actions it took to provide Canadian law enforcement with what it needed to decrypt communications between devices.
Apple and the FBI vow to work together to find compromise solution in encryption debate.
Google released its annual Android Security Report, a state of the union on the Android ecosystem.
Researchers at Bastille said they’ve more than doubled the range with which an attacker can exploit the Mousejack vulnerability.
Tibetans along with journalists and human rights workers in Hong Kong and Taiwan have been targeted in campaigns using phishing emails laced with Microsoft RTF attachments that exploit four vulnerabilities.