IT Security News

IT security news and insights to keep your data and infrastructure safe. Learn the latest strategies and best practices to protect against viruses, hackers, and disasters.

Shadowbrokers dump wealth of darknet exploits to use against Windows

With a name that probably should stay in space opera role playing games, a group known only as The Shadow Brokers released a hefty amount of Windows exploits online. Its main aim seems to have been at targeting a cyber-espionage group tied to the National Security Agency (NSA).

As if meeting the filing deadline wasn’t frustrating enough – 2 major tax season cybersecurity vulnerabilities

As the deadline for filing taxes draws nearer – April 18 this year – almost 100,000 taxpayers were affected in a student financial aid scheme, according to the IRS. IRS’ Data Retrieval Tool, which helps users fill out the Free Application for Federal Student Aid (FAFSA), was shut down after the tax agency realized the […]

How repeal of Internet privacy rules harms cybersecurity

Last Thursday, the House voted to repeal Internet privacy rules that had been passed back in 2016. And while there’s arguments on both sides of the aisle here, there’s no denying that where privacy goes, cybersecurity follows.

Hackers threaten to wipe 200 million iCloud accounts: Also, I have a bridge I’d like to sell you

Hackers from a new organization, the Turkish Crime Family, claim to have access to 200 million iCloud accounts and are going to wipe them unless Apple pays a ransom. Also, I have come into a very nice bridge and would be willing to cut you a great deal on it. 

Malware targets industry: The fight gets real

A strain of malware that goes after industrial plants found that nearly 3,000 a year are infected with malware, signaling that hackers could potentially have real-life effects from their cybercrimes. 

Nigerian email scams: They’re actually working

Emails claiming to be from a Nigerian prince used to be the running joke of IT security. Who would actually fall for those things? Well, it turns out West African cybercriminals have gotten a lot better over the years. And similar scams targeting businesses are making them big money. 

Apache vulnerability won’t be an easy one to patch

News of a vulnerability in Apache Struts web application framework is coming in. And by all accounts, this won’t be an easy fix. The code-execution zero-day bug was discovered on March 7, 2017. At that time, there were already multiple exploits of this vulnerability in the wild, leading to everything from information disclosure to stealing […]

Consumer Reports to begin ranking products on security

This may not be the leap in Internet of Things (IoT) security that’s sorely needed, but it’s certainly a step in the right direction. 

Huge mistake: Company gets breached, doesn’t inform the victims … its employees

Talk about bad employee morale. After a hacker breached 30,000 employees of Sports Direct, a British retailer, the company failed to take the next obvious step: letting those employees know about it. 

Cost of cyberattacks reach $350 million

Yahoo’s breaches continue to be big news long after their discovery. And they could turn out have huge financial implications.