[German]The forum of Windows tool developer IOBit was hacked over the weekend. The aim of the hack was to distribute the DeroHE ransomware to forum visitors.

The European Medicines Agency (EMA) today revealed that some of the Pfizer/BioNTech COVID-19 vaccine data stolen from its servers in December was leaked online.

Hackers believed to be working for Russia have been monitoring internal email traffic at the U.S. Treasury and Commerce departments, according to people familiar with the matter, adding they feared the hacks uncovered so far may be the tip of the iceberg.

Google makes its money from being the world's middle man for online advertising. It's kind of a tech company too, but in a good-enough sort of way rather than the "hey, we invented the transistor" sort of way. It doesn't do anything nobody else can do, except leverage its search dominance into advertising dominance.

The US Federal Bureau of Investigation says pranksters are hijacking weakly-secured smart devices in order to live-stream swatting incidents. "Recently, offenders have been using victims' smart devices, including video and audio capable home surveillance devices, to carry out swatting attacks," the FBI said in a public service announcement published today.

One of the great threats to our civilization is space weather. Specifically, the Sun's proven ability to target the planet with a tremendous cosmic belch of radiation, knocking out satellites, power grids, and networks worldwide.

Internet domain company GoDaddy used a holiday bonus notification to test employees on email phishing scams, after workers had already been told they would not receive a bonus this year. The email to all staff, obtained by NBC affiliate KPNX in Arizona, was sent on Dec. 14 and read: "Happy Holiday GoDaddy! 2020 has been a record year for GoDaddy, thanks to you!"

Things were touch-and-go for a while, but it looks like Let's Encrypt's transition to a standalone certificate authority (CA) isn't going to break a ton of old Android phones. This was a serious concern earlier due to an expiring root certificate, but Let's Encrypt has come up with a workaround.

The U.S. cybersecurity agency said on Wednesday that a sprawling cyber espionage campaign made public earlier this month is affecting state and local governments, although it released few additional details.

Thousands of companies and governments are racing to discover whether they have been hit by the Russian hackers who reportedly infiltrated several US government agencies. The initial breach, reported on December 13, included the Treasury as well as the Departments of Commerce and Homeland Security. But the stealthy techniques the hackers used mean it could take months to identify all their victims and remove whatever spyware they installed.

WhatsApp leads the messaging world—with more than two billion users now sending 100 billion messages each day. The Facebook-owned platform popularized the idea that secure messaging could be simple and universal. But, as good as that security might be, it’s not enough—and we have seen news this week that should serve as a serious warning that there’s more you must do to keep your WhatsApp account secure.

Hackers who breached federal agency networks through software made by SolarWinds appear to have conducted a test run of their broad espionage campaign last year, sources with knowledge of the operation said.

The federal government’s top cybersecurity agency issued its most urgent warning yet about a sophisticated and extensive computer breach, saying Thursday that it posed a “grave risk” to networks maintained by governments, utilities and the private sector and could be difficult to purge.

A Google security researcher found bugs that allowed him to take over nearby iPhones with a Raspberry Pi and just $100 in WiFi gear.

Today, Google announced an update on the rollout of rich communication services (RCS) for its official Messages app. RCS support — which Google markets as Chat — is now available around the world for everyone who uses the app. That means you can access RCS features regardless of your phone or carrier. The only stipulation is that the person(s) with whom you are communicating also must have Chat active within Messages.

Key factors leading to the growth of network security market revenue in the Asia Pacific region includes instances of ransomware attacks, targeted attacks and phishing.

On November 12, 2020 Apple released macOS Big Sur. In the hours after the release went live, somewhere in Apple's infrastructure an Online Certificate Status Protocol (OCSP) responder cried out in pain, dropping to its knees, begging for mercy as load increased beyond what it could handle.

As the amount of sensitive data stored on computers has exploded over the past decade, hardware and software makers have invested increasing amounts of resources into securing devices against physical attacks in the event that they’re lost, stolen, or confiscated. Earlier this week, Intel fixed a series of bugs that made it possible for attackers to install malicious firmware on millions of computers that use its CPUs.

Security flaw lets attackers escape sandboxes designed to contain malicious code.

Zoom’s end-to-end encryption (E2EE) has arrived, letting both free and paid users secure their meetings so that only participants, not Zoom or anyone else, can access their content. Zoom says E2EE is supported across its Mac, PC, iOS, and Android apps, as well as Zoom Rooms, but not its web client or third-party clients that use the Zoom SDK.