Threatpost

Apple has fixed a critical flaw in its Sign in with Apple feature, which could have been abused by attackers to takeover victims' third-party applications.

Troy Hunt said that the supposed data breach perpetrated by Anonymous is most likely a hoax.

Database of sensitive info, including emails and passwords, from owners of Daniel’s Hosting portals could be incriminating.

Ongoing spear-phishing attacks aim at stolen Windows credentials for ICS suppliers worldwide.

Attackers managed to compromise NTT Communication’s Active Directory server and a construction information management server.

The Russian spy group, a.k.a. BlackEnergy, is actively compromising Exim mail servers via a critical security vulnerability.

Google TAG report reveals that "hack for hire" firms are tapping into the coronavirus pandemic via WHO phishing lures.

Watchdog group said company has violated the Illinois BIPA and ‘will end privacy as we know it’ without intervention.

The DDoS group sets itself apart by using exploits -- but it doesn't always pan out.

Attackers compromised six Cisco VIRL-PE servers that are affected by critical SaltStack vulnerabilities.

The lawsuit, filed against Google by Arizona's Attorney General, alleges that the tech giant uses “deceptive and unfair conduct” to obtain users’ location data.

Microsoft has warned on a new breed of patient ransomware attacks that lurk in networks for weeks before striking.

Phishing campaigns targeting enterprises in U.S. and Germany have been used to nab enterprise mailing info, passwords and certificates.

The latest campaign spread malware via pirate gaming portals.

The new malware family was seen pretending to be an official Italian app, called Immuni.

Passwords and other credentials have been listed on Have I Been Pwned as attack rumors circulate.

a malicious app installed on a device can hide behind legitimate apps.

An updated version of the ComRAT malware was discovered in attacks on governmental targets.

Latest version of UnC0ver uses unpatched zero-day exploit to take complete control of devices, even those running iOS 13.5.

Even seeing data breaches in the news, more than half of consumers are still reusing passwords.