Threat Intelligence

Facebook Spam Botnet Promises ‘Likes’ for Access Tokens

Facebook users can fuel a social spam botnet by providing verified apps' access tokens in exchange for "likes" and comments.

OWASP Top 10 Update: Is It Helping to Create More Secure...

What has not been updated in the new Top 10 list is almost more significant than what has.

New OWASP Top 10 Reveals Critical Weakness in Application Defenses

It's time to move from a dependence on the flawed process of vulnerability identification and remediation to a two-pronged approach that also protects organizations from attacks.

Iranian Hackers Believed Behind Massive Attacks on Israeli Targets

OilRig aka Helix Kitten nation-state group leveraged Microsoft zero-day bug in targeted attacks.

IRS and Immigration Officials Impersonated in Call Center Scam

A call center in India was used to scare US residents with threats of imprisonment and deportation in a ruse that impersonated US officials.

Microsoft Updates Foreign Surveillance Request Count

Microsoft received 0-499 surveillance requests from January to June 2016, correcting an earlier report stating orders spiked to 1,000-1,499.

HHS Hits CardioNet with $2.5M HIPAA Settlement Fee

The US Department of Health and Human Services slapped the mobile cardiac monitoring service with fee after breach of customer health data.

USAF Launches ‘Hack the Air Force’

Bug bounty contest expands Defense Department outreach to the global hacker community to find unknown vulnerabilities in DoD networks.

Microsoft App Aims to Delete the Password

Microsoft has officially launched its Authenticator app designed to simplify and secure user logins, raising questions about the future of password-free authentication.

Threat Intelligence Is (Still) Broken: A Cautionary Tale from the Past

There is much to be learned from the striking parallels between counter-terrorism threat analysis before 9-11 and how we handle cyber threat intelligence today.

Chipotle Serves Up Security Incident Warning

The Mexican restaurant chain notifies customers its payment processing system may have been hacked, marking the latest woes for the fast-food maker.

What Role Should ISPs Play in Cybersecurity?

There are many actions ISPs could do to make browsing the Web safer, but one thing stands out.