With the proliferation of machine-to-machine (M2M) devices and connections, some estimates putting the number as high as 50 billion devices by 2020, security pros are trying to come to grips with the security implications of all those endpoints.
After months of investigation, Goodwill Industries has confirmed that it suffered a data breach and noted a third-party vendor as the source.
Two-thirds of IT pros experience phishing attacks at least once a week, according to a survey of 205 U.S. IT pros by Ipsos Observer on behalf of HP TippingPoint.
Over the last three years, foreign hackers have twice successfully breached the computers systems at the Nuclear Regulatory Commission, which oversees the safety of U.S. nuclear power plants, according to a report by the NRC's Office of the Inspector General.
The Backoff malware, detailed in a US-CERT alert, has already infected point-of-sale systems at 600 retailers, according to security firm Trustwave.
The Android Fake ID flaw could open up enterprises that allow BYOD to malware that impersonate trusted apps, steal confidential information and fool mobile device management software.
Close to half of organizations either do not have a mobile device policy at all or have not fully implemented the policy they have in place, according to a survey of 1,100 IT security pros who are members of the LinkedIn Information Security Community.
Security firm Sucuri is warning WordPress admins that a "massive" malware infection is wreaking havoc on WordPress websites. Sites with outdated plugins or weak passwords are particularly at risk.
A new malware called ScarePakage seizes mobile phones and pretends to be the FBI in order to coerce users to hand over money to have the device set free.
The U.S. Secret Service and the U.S. Department of Homeland Security are warning the hospitality industry about keystroke logging malware that has been infecting PCs at hotel business centers, according to an advisory obtained by KrebsonSecurity.