Sunday, January 20, 2019
           (757) 873-6707                     Monday - Friday, 9 am - 5:30pm
Yet Another Bypass: Is 2FA Broken? Authentication Experts Weigh In A penetration testing tool called Modlishka can defeat two-factor authentication in the latest 2FA security issue. We asked a roundtable of experts what it all means.
At CES, Focus is On ‘Cool Factor’ Not IoT Security When it comes to IoT, the priority at CES is the "wow factor" - but not so much a focus on security.
Biometrics in 2019: Increased Security or New Attack Vector? Should we pump the brakes on the roll out of biometric security to first consider whether we are creating new vulnerabilities?
The Promise and Peril of 5G As the hype at CES demonstrates, 5G is the newest and shiniest tech bauble out there: but security concerns loom.

Latest News

Threatpost Poll: Can We Fix 2FA?

Take our short poll to weigh in on the state of two-factor authentication.

Hack Allows Escape of Play-with-Docker Containers

Researchers created a proof-of-concept escape of Docker test environment.

Ryuk Hauls in $3.7M in ‘Earnings,’ Adds TrickBot to the Attack Mix

The malware's operator, Grim Spider, could be affiliated with Russian cybercrime rings, according to some -- others say there's no concrete evidence.

Mozilla Kills Default Support for Adobe Flash in Firefox 69

Firefox 69 will force users to manually install Adobe Flash as the plugin inches toward end of life.

Data Exposed in OXO, Amazon and MongoDB Leaks

Dual data exposures and a wide-scale data leak due to a vulnerable MongoDB database have kicked off 2019 so far.

Podcast: Emotet Grows With Fast-Evolving Tactics

Threatpost discusses the future of the Emotet banking trojan with Cylance.

Pre-Installed Android App Impacts Millions with Slew of Malicious Activity

The app was developed by legitimate Chinese manufacturing giant TCL.

TA505 Crime Gang Debuts Brand-New ServHelper Backdoor

The latest malware from TA505 has been seen targeting banks, retailers and restaurants with two different versions.

U.S. Government Shutdown Leaves Dozens of .Gov Websites Vulnerable

As the shutdown continues into its 21st day, dozens of .gov websites haven't renewed their TLS certificates.

‘Unprecedented’ DNS Hijacking Attacks Linked to Iran

The attacks, targeting several countries to redirect traffic and harvest credentials, have been linked to Iran.