News, products and happenings from RSA Conference 2015 in San Francisco.
Wearables' novelty is matched by their vulnerability, exposing employers' IT infrastructure to malicious intruders and data theft.
At least 17 WordPress plugins have been found vulnerable to cross-site scripting (XSS) flaws that could allow attackers to inject malicious code in the browsers of the sites' visitors.
A bug in an older version of AFNetworking can allow attackers to intercept and decrypt HTTPS traffic between apps and servers.
It took the company over half a year to issue a patch, but it seems that even that long a period was not long enough to thoroughly address the issue.
More than 90 percent of all Trojans targeted financial institutions located in US, followed by the UK, Germany, Italy, Spain and Australia.
Last year was the year attackers “went corporate," exploiting middle management overload of information sharing, and trading off attack volume for sophistication.
There’s more money currently dedicated to stopping data breaches than ever before; however, this money isn’t always being sent in the right direction to truly put a stop to the problem
The use of encryption continues to grow in response to consumer concerns, privacy compliance regulations and on-going cyber-attacks and yet there are still major challenges in managing key across what are the mostly fragmented and tactical deployments of encryption technologies.
APT28 has been spotted wielding two zero-day exploits in the latest targeted attack aimed at an "international government entity in an industry vertical that aligns with known APT28 targeting."