Information security threats

Mitigating information security threats is an ongoing battle. Here you'll find information on the latest malware and cyberattacks facing enterprises, from viruses and Trojans to social engineering techniques, as well as news, expert advice and learning tools to address these threats.

October 19, 2018 19 Oct'18
GreyEnergy threat group detected attacking high-value targets

Researchers claim a new threat group called GreyEnergy is the successor to BlackEnergy, but experts are unsure if the evidence supports the claims or warnings of future attacks.
October 18, 2018 18 Oct'18
New libSSH vulnerability gives root access to servers

A 4-year-old libSSH vulnerability can allow attackers to easily log in to servers with full administrative control, but it is still unclear exactly how many devices are at risk.
October 16, 2018 16 Oct'18
Pentagon data breach exposed travel data for 30,000 individuals

The Department of Defense said a Pentagon data breach exposed travel records for approximately 30,000 military and civilian personnel, but the investigation is still in progress.
October 12, 2018 12 Oct'18
Industroyer, NotPetya linked to TeleBots group by ESET researchers

News roundup: An APT group called TeleBots group was linked to Industroyer malware and NotPetya ransomware, according to researchers. Plus, Imperva is acquired by Thoma Bravo and more.

Bring yourself up to speed with our introductory content

Create an email phishing test to minimize attack vectors

With email phishing testing, IT can improve its end-user security. Phishing attacks prey on user ignorance, so IT can use a test to teach users how to avoid this attack vector. Continue Reading
How to create an internal phishing campaign from scratch

When IT begins an email phishing campaign, it must determine what server the emails will come from, consider phishing tool options and more. Continue Reading
Payload (computing)

The term payload, when used in the context of networking or telecommunications, is the data carried inside of a packet (or other network protocol data units like frames or segments). Continue Reading

Weigh the pros and cons of technologies, products and projects you are considering.

How does TLBleed abuse the Hyper-Threading feature in Intel chips?

TLBleed exploits Intel's HTT feature to leak data via side-channel attacks. Learn about how TLBleed obtains sensitive memory information from expert Michael Cobb. Continue Reading
4 enterprise email clients to consider instead of Outlook

Organizations looking to cut costs or make a change for their business email client have numerous options to replace Microsoft Outlook, but not all of them are viable. Continue Reading
What are three recent magnetic tape storage advancements?

With tape storage still playing a role for such use cases as offline protection from ransomware, what are some key improvements in the media technology? Continue Reading

Learn to apply best practices and optimize your operations.

The implications of the NetSpectre vulnerability

The NetSpectre vulnerability could enable a slow leak of data remotely via side channels. Expert Michael Cobb explains why data on secure microprocessors is not actually safe. Continue Reading
How does the resurgent VPNFilter botnet target victims?

After a comeback of the Russian-built VPNFilter botnet, home network devices are at risk. Learn how this malware targets victims with expert Nick Lewis. Continue Reading
How did the IcedID and TrickBot banking Trojans join forces?

The TrickBot banking Trojan joined forces with IcedID to form a dual threat that targets victims for money. Discover how this union occurred and how it has changed their behaviors. Continue Reading

We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.

How do hackers use legitimate admin tools to compromise networks?

Hackers use legitimate admin tools to exfiltrate data in living off the land attacks that are hard to detect. Learn about this cyberattack tactic from expert Michael Cobb. Continue Reading
How does FacexWorm malware use Facebook Messenger to spread?

Researchers at Trend Micro found a new strain of malware -- dubbed FacexWorm -- that targets users via a malicious Chrome extension. Discover how this attack works with Nick Lewis. Continue Reading
How is Android Accessibility Service affected by a banking Trojan?

ThreatFabric researchers uncovered MysteryBot, Android malware that uses overlay attacks to avoid detection. Learn how this malware affects Google's Android Accessibility Service. Continue Reading