In July 2016, KrebsOnSecurity published a story identifying a Toronto man as the author of the Orcus RAT, a software product that’s been marketed on underground forums and used in countless malware attacks since its creation in 2015. This week, Canadian authorities criminally charged him with ...

The Dark Web is a network of systems connected to the Internet designed to share information securely and anonymously. These capabilities are abused by cyber criminals to enable their activities, for example selling hacking tools or purchasing stolen information such as credit card data. Be aware th...

Microsoft today released updates to plug security holes in its software, including patches to fix at least 74 weaknesses in various flavors of Windows and programs that run on top of it. The November updates include patches for a zero-day flaw in Internet Explorer that is currently being exploited i...

Orvis, a Vermont-based retailer that specializes in high-end fly fishing equipment and other sporting goods, leaked hundreds of internal passwords on Pastebin.com for several weeks last month, exposing credentials the company used to manage everything from firewalls and routers to administrator acco...

Hospitals that have been hit by a data breach or ransomware attack can expect to see an increase in the death rate among heart patients in the following months or years because of cybersecurity remediation efforts, a new study posits. Health industry experts say the findings should prompt a larger r...

Banking industry giant NCR Corp. [NYSE: NCR] late last month took the unusual step of temporarily blocking third-party financial data aggregators Mint and QuicBooks Online from accessing Digital Insight, an online banking platform used by hundreds of financial institutions. That ban, which came...

Top domain name registrars NetworkSolutions.com, Register.com and Web.com are asking customers to reset their passwords after discovering an intrusion in August 2019 in which customer account information was accessed. A notice to customers at notice.web.com. “On October 16, 2019, Web.com deter...

Reporting on the exposure of some 26 million stolen credit cards leaked from a top underground cybercrime store highlighted some persistent and hard truths. Most notably, that the world’s largest financial institutions tend to have a much better idea of which merchants and bank cards have been...

When New York-based cloud payroll provider MyPayrollHR unexpectedly shuttered its doors last month and disappeared with $26 million worth of customer payroll deposits, its payment processor Cachet Financial Services ended up funding the bank accounts of MyPayrollHR client company employees anyway, g...

Business-to-business payments provider Billtrust is still recovering from a ransomware attack that began last week.  The company said it is in the final stages of bringing all of its systems back online from backups. With more than 550 employees, Lawrence Township, N.J.-based Billtrust is a clo...

Antivirus and security giant Avast and virtual private networking (VPN) software provider NordVPN each today disclosed months-long network intrusions that — while otherwise unrelated — shared a common cause: Forgotten or unknown user accounts that granted remote access to internal system...

Microsoft's contracts with European Union institutions do not fully protect data in line with EU law, the European Data Protection Supervisor (EDPS) said in initial findings published on Monday.

German payments company Wirecard has hired KPMG to conduct an independent audit to address allegations by the Financial Times that its finance team had sought to inflate reported sales and profits, it said on Monday.

Israel's Upstream Security has secured $30 million funding from a wide range of global automakers and venture capital firms as it looks to tap into the increasingly competitive market for software to protect vehicles from hackers.

The European Data Protection Supervisor said on Monday that preliminary results of its investigation into Microsoft contracts with EU institutions show serious issues over compliance with data protection rules.

German payments company Wirecard has hired KPMG to conduct an independent audit to address allegations by the Financial Times that its finance team had sought to inflate reported sales and profits, it said on Monday.

Gojek CEO and co-founder Nadiem Makarim said on Monday he had resigned to join Indonesia's cabinet, and the ride-hailing and payments company said two senior officials would jointly take over running operations of the $10 billion firm.

Business software group SAP said on Monday it had reached a three-year deal with Microsoft to help its large enterprise customers move their business processes into the cloud.

Russian hackers piggy-backed on an Iranian cyber-espionage operation to attack government and industry organizations in dozens of countries while masquerading as attackers from the Islamic Republic, British and U.S. officials said on Monday.

Facebook Inc , facing growing skepticism about its digital currency project Libra, on Sunday said the initiative could use cryptocurrencies based on national currencies such as the dollar, instead of the synthetic one it initially proposed.