CERTIFICATES PROVIDE GREAT SECURITY
ONLY IF UNDERSTOOD AND IMPLEMENTED PROPERLY
RECENT THREAT POSTS
Attackers gain read-only permissions to snoop around Office 365 accounts, including emails, contacts and more.
The Android malware comes from threat group APT-C-23, also known as Two-Tailed Scorpion and Desert Scorpion.
The cybercrooks spread the COVID-19 relief scam via Telegram and WhatsApp, and ultimately harvest account credentials and even pics of IDs.
Despite Microsoft issuing patches almost eight months ago, 61 percent of Exchange servers are still vulnerable.
Popular ‘safe browsing’ padlocks are now passe as a majority of bad guys also use them.
The attempted compromises, which could allow full control over Active Directory identity services, are flying thick and fast just a week after active exploits of CVE-2020-1472 were first flagged.
Botnets and IoT devices are forming a perfect storm for IT staff wrestling with WFH employee security.
A researcher said he discovered an open data cache with names, grades, birthdates and more, after the Clark County School District refused to pay the ransom.
Threatpost's latest poll probes telehealth security risks and asks for IT cures.
Researchers warn of emails pretending to help business employees upgrade to Windows 10 - and then stealing their Outlook emails and passwords.