DARKReading

Threat is spreading widely via spam campaigns, infecting systems with a new malware loader.

Russian cybercrime group known as T505 is targeting SolarWinds Server-U systems that haven't been patched for a remote code execution vulnerability fixed this summer.

One size won't fit all as we try to reconcile the need to demonstrate expertise and value with keeping clients and researchers safe.

The exercise included several objectives related to response procedures at the refinery, including evacuation and shelter-in-place decision-making; roles and responsibilities during investigations; communication with first responders; and public messaging before and following an incident.

OT security engineers and personnel should approach senior management with an emphasis on risk reduction benefits and with a concrete plan to secure budget and funding before it's too late.

International policy expert Marietke Schaake explores the intricacies of protecting the public as governments depend on private companies to build and secure digital infrastructure.

AWS fixed the security flaws that left the API service at risk of so-called HTTP header-smuggling attacks, says the researcher who discovered them.

While attendees join Black Hat Europe 2021 virtually and live in London, we bring you prerecorded interviews from remote offices around the world.

November security update contains patches for 55 bugs — including six zero-days across various products.

Breaking encryption in a day and hacking without visible devices are two threats that could become a reality in the next decade and beyond, experts say.