Software Vulnerabilities March 4, 2019 Stranger Danger: X-Force Red Finds 19 Vulnerabilities in Visitor Management Systems 4 min read - Two X-Force Red interns discovered 19 previously undisclosed vulnerabilities across five popular visitor management systems that could enable attackers to establish a foothold on corporate networks.
Application Security February 7, 2019 Moving to the Hybrid Cloud? Make Sure It’s Secure by Design 4 min read - Failure to consider security when developing a hybrid cloud can lead to unanticipated problems that don't exist in typical technology infrastructure.
August 22, 2018 KeyPass Ransomware Encrypts Data Across 20 Countries 2 min read - Less than two weeks after its initial detection, STOP ransomware variant KeyPass has infected devices across 20 countries, according to security researchers.
July 20, 2018 Unsecured Third-Party Access Puts Personal Data at Risk 2 min read - A July 2018 threat report from IBM X-Force Exchange revealed that threat group Magecart exploited unsecured third-party access to steal credit card details from Ticketmaster customers.
June 27, 2018 How a 40-Year-Old Mobile Security Flaw Puts Consumers at Risk 3 min read - A decades-old mobile security flaw resurfaced in recent weeks after a U.S. senator reported that cybercriminals exploited the Signaling System 7 (SS7) protocol to breach a mobile carrier.
Data Protection October 27, 2017 The Blockchain Is Only as Strong as Its Weakest Link 3 min read - Blockchain technology depends on mutual trust between human participants, each of whom represents a potential weakness in the chain.
September 6, 2017 Quantum Data Protection: The Birth of an Unhackable Box? 2 min read - CalTech researchers created a chip-sized unhackable box, which represents a significant step forward in the field of quantum data protection.
April 21, 2015 Google Ad Services Pushes for Near-Total Traffic Encryption to Fight Malvertising 2 min read - In response to growing incidents of malvertising, Google Ad Services has announced that the majority of its traffic will be encrypted by June 30.