An ongoing APT campaign employs decoy documents to lure potential victims into installing malicious remote-control tools. Targets include at least one bank, the BBC and many U.S. and EU government agencies.
Security researchers say the international takedown of the Gameover Zeus botnet and servers for CryptoLocker ransomware will have a positive short-term impact, but they warn the threats could quickly re-emerge unless key steps are taken.
The total number of employees affected by a breach of financial information at the University of Pittsburgh Medical Center has more than doubled to 62,000 in a case that's resulted in federal income tax fraud and triggered lawsuits.
Local police are investigating a breach involving inappropriate access to about 600 patients' records by a former employee at ProMedica Bay Park Hospital in Oregon, Ohio. Find out what information was exposed.
The OpenSSL Project is receiving new funding to support its operations following the Heartbleed exploit that exposed a flaw in the cryptographic tool that's used to provide communications security and privacy online.
The federal tally of major health data breaches has hit a new milestone; it now lists more than 1,000 incidents affecting 500 or more individuals. Experts weigh in on the lessons to be learned from the details of these breaches.
Effective risk management requires involvement of an organization's top leader; the resignation of Eric Shinseki as secretary of Veterans Affairs means that the VA likely will continue to struggle to comply with federal requirements for IT security.
A new report for shareholders recommends that seven members of Target Corp.'s board of directors should be replaced as a result of the retailer's massive data breach. Experts discuss the role boards must play in cybersecurity.
Web application attacks increased more than malware-fueled point-of-sale intrusions last year, Verizon's latest breach report shows. Analyst Dave Ostertag reviews the complete results and offers breach prevention insights.
Hacker Hector Monsegur, also known as "Sabu," has been sentenced to time served because he aided the government in preventing or mitigating more than 300 cyber-attacks, including those against the U.S. Congress, Visa and MasterCard.
Healthcare organizations are becoming a bigger target for cybercriminals because so much more clinical and financial information is now stored in potentially vulnerable information systems, says security expert Mac McMillan.