By Sudais Asif

Before dropping NetSupport Manager RAT, attackers trick users into opening a malicious MS Word document by entering a password.

This is a post from HackRead.com Read the original post: Hackers are using Word documents to drop NetSupport Manager RAT

Threatpost talks to Alex Tilley, senior security researcher with Dell SecureWorks' Counter Threat Unit Research Team, about a recently discovered campaign linked to an Iranian APT.

When it's impossible to remediate all vulnerabilities in an organization, data can indicate which bugs should be prioritized.

On Wednesday millions of Transport Layer Security certificates will be revoked because of a Certificate Authority Authorization bug.

An exploit published by a developer is easy to use and has already been used to build malicious apps that gain root access on Android devices.

How much data is too much to give away to get online while you're waiting at the train station? In the airport? A shopping mall?

The 25-year-old was convicted of 18 charges stemming from illegal access to money stored in online gift cards.

Canadian province may set country’s future privacy standard

Troy Hunt said the popular HIBP will continue to be run as an independent service.

Last week, KrebsOnSecurity reported to health insurance provider Blue Shield of California that its Web site was flagged by multiple security products as serving malicious content. Blue Shield quickly removed the unauthorized code. An investigation determined it was injected by a browser extension installed on the computer of a Blue Shield employee who'd edited the Web site in the past month.

The incident is a reminder that browser extensions -- however useful or fun they may seem when you install them -- typically have a great deal of power and can effectively read and/or write all data in your browsing sessions. And as we'll see, it's not uncommon for extension makers to sell or lease their user base to shady advertising firms, or in some cases abandon them to outright cybercriminals.