In a recent phishing campaign, fraudsters used a legitimate browser extension tool called SingleFile to obfuscate their attacks and remain undetected.
The IBM X-Force Red team recently ran into trouble on a black-box penetration testing assignment. Here's how the testers overcame the obstacles to ultimately establish a solid adversarial operation.
One of the largest certificate authorities announced that the vast majority of the top 1 million websites had replaced the digital certificates major browsers plan to phase out in the coming months.
Mozilla will advance cybersecurity education by teaming up with Have I Been Pwned to notify users if they are using a site that has been recently breached.
A new vulnerability called TorMoil exploits a browser flaw to bypass security relays and expose real IP addresses belonging to Tor users.
Adobe announced that it will stop supporting its Flash Player by 2020, but the company pledged to continue offering security patches for the next few years
More than 90 percent of the top 1 million websites have failed to adopt adequate website security controls to protect against XSS, MitM attacks and more.
The Mozilla Foundation issued its first "Internet Health Report" to generate public awareness about current and oncoming cyberthreats.
Some of the biggest names in the web browser game — namely, Google, Microsoft and Mozilla — plan to stop accepting insecure SHA-1 certificates in 2017.
The WoT privacy breach highlights the commonplace nature of third-party data selling and frequent failure to read the fine print in user agreements.