From passkeys to multifactor authentication (MFA), most businesses are embracing solutions that protect sensitive information to minimize their attack surface and enhance cybersecurity posture. While ...

The default browser in Android versions older than 4.4 has a vulnerability that allows malicious websites to bypass a critical security mechanism and take control of a user’s authenticated sessions on ...

Confiant has spotted the known threat actor eGobbler back in action. This group is well-known for attempting its campaigns around holidays, which is when it assumes there will be increased consumer ...

Malicious Chrome extensions steal login data by impersonating Workday, NetSuite and SAP SuccessFactors platforms, cybersecurity researchers say.

The Intelligent Platform Management Interface (IPMI) implementations in multiple manufacturer's Baseboard Management Controller (BMC) software are vulnerable to IPMI session hijacking. An attacker ...

The web browser has quietly become one of the most critical components of enterprise infrastructure—and one of the most dangerous. On September 29th at 12:00 PM ET, BleepingComputer and SC Media will ...

Google to Fight Cookie Hijacking With Encryption Keys for Chrome Browser 'Device Bound Session Credentials' will tap the TPM chip in today's PCs. Google is testing it with some users running the beta ...

Citrix users are back in the crosshairs, as a new out-of-bounds read vulnerability, reminiscent of the notorious “Citrix Bleed,” has surfaced with signs already pointing to active exploitation. The ...

Malicious Chrome extensions on the Chrome Web Store masquerading as productivity and security tools for enterprise HR and ERP platforms were discovered stealing authentication credentials or blocking ...