SMB

Based on our analysis of ZKTeco vulnerabilities, we dissect the risks associated with biometric authentication.

Our experts have discovered ransomware they’ve dubbed “ShrinkLocker”, which encrypts infected computers’ drives using BitLocker — a utility built into Windows.

Cybercriminals are using genuine Facebook infrastructure to send phishing emails threatening to block accounts.

Threat actors are targeting hotel staff with malicious and phishing e-mails.

We’ve released a free application that allows you to scan Linux systems for known cyberthreats.

Today we discuss which services and applications should be patched first, and what attackers are focusing on.

dormakaba Saflok locks — used on around three million doors across 13,000 hotels — are vulnerable to an attack that involves forging electronic keycards.

Cybercriminals prey on corporate credentials by sending phishing links through Dropbox after priming the victim.

Kaspersky ICS-CERT experts have discovered several critical vulnerabilities in Telit Cinterion M2M modems, which are used in millions of devices.

A credential stuffing attack is one of the most effective ways to take control of accounts. Here’s how it works and what you should do to protect your company.

Dropbox has shared a report on a data breach in the Dropbox Sign e-signature service. What does this mean for users, and what should they do?

Expanding Global Transparency Initiative by opening Istanbul Transparency Center and launching a Transparency Lab together with Boğaziçi University

By hijacking domains with CNAME records and exploiting forgotten SPF records, attackers seize domains and use them for their own purposes.

We explain in simple terms research demonstrating a vulnerability in modern digital video cameras.

Proxyware can make it difficult to detect cyberattacks on organizations — sometimes making the latter unwitting accomplices in crimes.

Cybersecurity lessons from the movie “The Beekeeper”.

A backdoor implanted into XZ Utils has found its way into popular Linux distributions.

We review a recent research paper highlighting a major hardware vulnerability in Apple M1, M2, and M3 CPUs.

A recent study shows how it’s possible to identify typed text from the sound of keystrokes — even in far-from-ideal environments.

To go undetected, attackers can operate in your network without any malware at all. How to detect them and prevent damage?

SIM swap fraud is back in vogue. We explain what it is, the danger it poses to organizations, and how to guard against such attacks.