Researchers sort out what went wrong when an estimated 500,000 DVRs and IP-based cameras were used in a series of massive DDoS attacks in September.

Mike Mimoso and Chris Brook discuss this week’s Virus Bulletin conference in Denver and CNBC’s Cambridge Cyber Summit at MIT, the NSA contractor arrest, APT false flags, and more.

Investigating state-sponsored espionage and counterterrorism is one thing. Writing public reports about these activities is another.

Networking giant Cisco issued five security bulletins this week with two critical bugs allowing remote execute code.

Mac security researcher Patrick Wardle released a tool called OverSight that monitors when malware may be recording a webcam or audio session on a macOS machine.

Researchers estimate thousands of ecommerce sites are under attack by a single threat actor that has infected servers with a web-based keylogger.

Cindy Cohn, the EFF’s Executive Director, called the NSA’s support of strong encryption disingenuous during a cybersecurity conference panel Wednesday.

At Virus Bulletin, researchers explain how Android mobile applications can collude to share data and synchronize payload execution.

Mike Mimoso talks to Kaspersky Lab Global Research and Analysis Team researchers Juan Andres Guerrero-Saade and Brian Bartholomew about a paper released at Virus Bulletin on deception tactics and false flags flown by APT groups to frustrate analysis.

At Virus Bulletin, researchers explained the risks associated with abandoned SDK master servers that present attackers with an opportunity to assume control of these communication channels.