Business

657 articles

Social engineering tricks

Social engineering in the spotlight: from classic tricks to new trends.

Data exfiltration via observing light emitting diode (LED) activity.

LED data exfiltration

Researchers have come up with a way to exfiltrate confidential data by observing LED activity.

How to protect RAM secrets

What can get stolen from RAM, and what’s hiberfil.sys got to do with it?

TriangleDB, spyware implant of Operation Triangulation

TriangleDB: the spyware implant of Operation Triangulation

APT operators are showing increasing interest in mobile devices. Our experts have studied one of their tools.

Vacation schedule scam

Cybercriminals prey on corporate credentials by sending fake HR emails.

How to get across the importance of cybersecurity to employees

The art of internal cybersecurity communications

A few tips on how to establish cybersecurity communications with employees.

Identity security: what is it, and why is it helpful?

Proper account security not only reduces the number of cyberattacks on companies — it brings financial benefits too. What needs to be done to reap them?

Hijacking a YouTube channel without a password

Hacking YouTube channels with stolen cookies

How scammers can hack your YouTube channel without knowing a password and second factor.

A matter of triangulation

Targeted attack on our management with the Triangulation Trojan.

Safeguards against firmware signed with stolen MSI keys

MSI leak: tips for users, organizations, and developers

Now anyone can sign device firmware with MSI private keys. This represents a long-term persistent risk to be considered by all users.

Creating a realistic isolated environment for threat intelligence and analysis

Making a better sandbox

The effectiveness of a sandbox largely depends on its ability to realistically imitate a working environment.

Public and private clouds compared for risks and costs

Brief cheat-sheet on cloud types and their risks

Сloud technologies differ in terms of both costs and risks. What cloud type should you choose, and how should you begin your migration?

Security risks associated with the new .zip and .mov domains

Beware the .zip and .mov domains!

Website names in the ZIP and MOV domains are indistinguishable from file names. How will this affect IT systems, and what will threat actors do?

New hardware vulnerability in Intel processors

A brief, plain-language explanation of an advanced method of data theft using features of modern CPUs.

ChatGPT jailbreaks

How Lord Voldemort helps hack neural networks.

How to get ready for deepfake threats

Cybercriminals are increasingly using deepfakes in attacks against companies. What can we do to be safer?

The most popular ways to launder cryptocurrency

How cybercriminals launder dirty crypto

Crypto mixers, nested exchanges, cash-out and other crypto-laundering methods used by ransomware operators.

How real is deepfake threat?

Understanding the mechanics of the darknet deepfake industry.

What threatens smart devices, and how microkernel OSs can help protect them.

Microkernel OSs against threats to smart devices

Why such OSs are gaining more significance in markets in need of security.

Microsoft buried Internet Explorer. But not completely — again

Internet Explorer is finally dead. Or is it?

In its February update, Microsoft buried Internet Explorer once and for all. Or did it? We investigate what really happened.

A look at cybersecurity issues in season 3 of The Mandalorian show.

Cybersecurity in season 3 of The Mandalorian

As per tradition, on May 4, we review the status of cybersecurity in a galaxy far, far away.

Privacy & Kids