Automated attacks aimed at guessing passwords have become a major threat to Web service providers. A new approach has been designed by two security researchers to address "breadth first" attacks in which password guesses are tried against a large…

A 19-year old security vulnerability in WinRAR, discovered by researchers at Check Point Software Technologies, has been patched. The WinRAR bug could allow the extraction of a malicious program to a computer's startup folder, which could then…

Security company, RIPS Technologies, has revealed the possibility of WordPress websites being remotely hijacked through the exploitation of a flaw in third-party plugins. The bug has been categorized as a path traversal vulnerability. This article…

Website administrators have been warned of a critical remote execution flaw impacting the content management system, Drupal. The exploitation of this bug could allow hackers to take over a Drupal site as well as a web server. Drupal's security team has…

Israel has launched a cybersecurity hotline to help people who think they are dealling with computer security threats or intrustions.  Israel’s national Computer Emergency Response Team,  is staffed by students of Ben-Gurion University of…

New physically unclonable function (PUF) technology to strengthen the security of Internet of Things (IoT) is presented by researchers at Rice University. PUFs are considered inherent digital fingerprints of devices, which could be used for IoT…

Researchers at Independent Security Evaluators (ISE) have found popular password managers, including 1Password, Dashlane, KeePass, and LastPass to be insecure on account of poor memory management, which could allow for the exposure of users’ passwords.…

"Each new year hails the latest slew of predictions for all sectors of business, with cybersecurity becoming one of the hottest topics around the world as companies of all sizes, operating in an array of sectors, scramble not to be the…

A standard for the cybersecurity of Internet of Things (IoT) has been released by the ETSI Technical Committee on Cybersecurity (TC CYBER). This standard sets a baseline for the security of consumer IoT devices such as connected children's toys, smart…

A new malware family, called Rietspoof, uses multiple stages for delivery, each of which has specific capabilities. Rietspoof has been found to deliver multiple payloads. This article continues to discuss discoveries made by security researchers…

According to Google security researchers, the use of software defenses is not an adequate solution to fixing Spectre vulnerabilities. Spectre attacks abuse the speculative execution capabilities of modern CPUs. Findings of a new study conducted by Google…