Strange factors: Yet another security problem plaguing SonicWall customers ...

Billions (No, that’s not a typo, Billions with a capital B) of files were potentially compromised. If you thought Node Package Manager (npm), the JavaScript runtime environment Node.js‘s default package manager, had ...

If you do the basics right — update regularly, control permissions and protect logins — you’ll already be ahead of most sites on the web ...

Phishing attacks continue to evolve, pushing even the most secure authentication methods to their limits. First advertised on cybercrime networks in late January 2025, Astaroth is a brand new phishing kit that ...

Phishing attacks continue to evolve, pushing even the most secure authentication methods to their limits. First advertised on cybercrime networks in late January 2025, Astaroth is a brand new phishing kit that ...

Should’ve used MFA: $T loses yet more customer data—this time, from almost all of them ...

Not cute: $UNH’s Change Healthcare unit paid a big ransom—its IT was as weak as a kitten ...

Insight #1:  SQL injection baffles airport security  You mean to say that SQL Injection is still a problem? How many more of these have to happen before we realize there are control layers ...

Insight #1: North Korean IT spies The threat of state-sponsored cyber espionage is real and evolving. Recent reports reveal North Korean IT professionals are using stolen identities and advanced tactics to infiltrate ...

Insight #1 It's been a while since I reminded everyone that one of the single greatest controls to implement to prevent account compromise is multifactor authentication (MFA). Do it today! ...