IT Pro is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Learn more

Security

The IT Pro Podcast: The problem with APIs
The IT Pro Podcast logo with the episode number 158 and title 'The problem with APIs'
application programming interface (API)

The IT Pro Podcast: The problem with APIs

With API attacks on the rise, knowing your attack surface is crucial
27 Jan 2023
Podcast transcript: The problem with APIs
The IT Pro Podcast logo with subheading 'Transcript' and the episode title 'The problem with APIs'
application programming interface (API)

Podcast transcript: The problem with APIs

Read the full transcript for this episode of the IT Pro Podcast
27 Jan 2023
Bitwarden users raise alarm over 'highly convincing' Google malvertising risks
Malware in code
Security

Bitwarden users raise alarm over 'highly convincing' Google malvertising risks

The volume of fake ads impersonating popular software has increased significantly in recent months
27 Jan 2023
FBI's landmark Hive ransomware takedown 'a drop in the ocean'
Abstract image of a ghost on a digital screen
cyber crime

FBI's landmark Hive ransomware takedown 'a drop in the ocean'

A huge win for law enforcement, but the 'hacking back' takedown of Hive's domain is just a small drop in the expansive ransomware ocean
27 Jan 2023
CISA: Phishing campaign targeting US federal agencies went undetected for months
Abstract image of a fishing hook through a red email to represent a phishing attack
phishing

CISA: Phishing campaign targeting US federal agencies went undetected for months

Threat actors used legitimate remote access software to maliciously target federal employees
26 Jan 2023
Dutch hacker steals data from virtually entire population of Austria
The Austrian parliament building in Vienna
data breaches

Dutch hacker steals data from virtually entire population of Austria

The data was stolen from a misconfigured cloud database found by the attacker through a search engine
26 Jan 2023
NCSC warns UK under state-sponsored spear-phishing attacks from Russia and Iran
Russian hacking on a laptop mockup with code sprawling over the screen
cyber security

NCSC warns UK under state-sponsored spear-phishing attacks from Russia and Iran

The acceleration in spear-phishing campaigns last year coincided with the escalating conflict in Ukraine, according to the NCSC
26 Jan 2023
GoTo admits hackers stole customer backups in LastPass breach
A gloved cartoon hand inserts a key, the teeth of which are asterisks, into a keyhole against a red background
hacking

GoTo admits hackers stole customer backups in LastPass breach

In addition to losing encrypted backups such as hashed passwords, the firm has confirmed hackers stole an encryption key relating to the data
25 Jan 2023
Report: Regulatory and monetary incentives needed to adopt safer programming languages
Abstract and obscured programming code displayed on a digital display
programming languages

Report: Regulatory and monetary incentives needed to adopt safer programming languages

Companies have been urged to create plans on how they intend to get rid of memory-unsafe code in their products
25 Jan 2023
How MSPs can capitalise on SMBs' security spending spree
Mockup image with padlocks to symbolise a cyber security vulnerability
Sponsored

How MSPs can capitalise on SMBs' security spending spree

A single cyber attack can easily provide a death blow to SMBs and they’re now ready to spend their way to safety
25 Jan 2023
Delinea appoints David Castignola as new CRO, sales leader
David Castignola headshot
Security

Delinea appoints David Castignola as new CRO, sales leader

The 25-year veteran joins after previously holding leadership positions at Optiv and RSA
25 Jan 2023
Up to 350,000 open source projects vulnerable to 15-year-old Python bug
A screen showing code written in Python
open source

Up to 350,000 open source projects vulnerable to 15-year-old Python bug

Researchers at Trellix and GitHub have patched nearly 62,000 affected projects so far
24 Jan 2023
GTA V vulnerability exposes PC users to partial remote code execution attacks
Rockstar Games logo appearing against a backdrop of the most recent games it has released
vulnerability

GTA V vulnerability exposes PC users to partial remote code execution attacks

Millions of GTA Online players could fall prey to malware or data corruption
23 Jan 2023
Mailchimp data breach impact unravels as second customer reveals extent of damage
Mailchimp logo displayed on a smartphone
data breaches

Mailchimp data breach impact unravels as second customer reveals extent of damage

Mailchimp customers affected by a recent data breach have warned users to “remain vigilant” of heightened security threats
23 Jan 2023
Freshworks CISO Jason Loomis on the first 100 days as security chief
Close-up photo of Jason Loomis, CISO at Freshworks
chief information security officer (CISO)

Freshworks CISO Jason Loomis on the first 100 days as security chief

Fewer than 100 days in the role, Jason Loomis reveals his plans for the future of security at Freshworks, and discusses the rising threat of API vulne…
23 Jan 2023
The Cookie Law is finally crumbling – good riddance
A mouse cursor hovering over an 'Allow all' option on a cookie banner
web browser

The Cookie Law is finally crumbling – good riddance

The stalest of all laws is getting an overhaul after years of menacing the web, and its end can’t come soon enough
21 Jan 2023
Hack The Box set to triple workforce and widen global expansion
Hack The Box CEO, Haris Pylarinos
cyber security

Hack The Box set to triple workforce and widen global expansion

CEO Haris Pylarinos told IT Pro the startup plans to accelerate international expansion and continue driving security skills awareness
20 Jan 2023
MSI to release securer BIOS settings after critical flaw discovered
The MSI logo on a wall at a conference, lit in red LED lighting
vulnerability

MSI to release securer BIOS settings after critical flaw discovered

The firm has admitted it essentially disabled Secure Boot on its motherboards in an attempt to improve customisability
20 Jan 2023
T-Mobile breach leaves customers vulnerable to phishing
T-Mobile logo seen displayed on a smartphone
Security

T-Mobile breach leaves customers vulnerable to phishing

T-Mobile confirmed that while customer information was exposed, no financial data or company systems were compromised
20 Jan 2023
Windows 11 System Restore bug preventing users from accessing apps
Windows 11 splash screen
Microsoft Windows

Windows 11 System Restore bug preventing users from accessing apps

Microsoft has issued a series of workarounds for the issue which is affecting a range of apps including Office and Terminal
19 Jan 2023
Google Ads malvertising campaign prompts questions around Search security
The Google logo shown on a landscape phone, held by a hand in silhouette against a dark blue background
malware

Google Ads malvertising campaign prompts questions around Search security

A leading security researcher has called into question why Google still allows malware links to top search results
18 Jan 2023
'Highly evasive' polymorphic malware generated using ChatGPT
A close up image of red computer code on a black screen with the word malware displayed in white
malware

'Highly evasive' polymorphic malware generated using ChatGPT

Researchers at CyberArk Labs developed a novel method to generate malware using text that goes largely undetected by signature-based antimalware produ…
17 Jan 2023
Businesses must overhaul “outdated” recruitment mindset to tackle dearth of privacy expertise
Several anonymous faces imposed with binary to represent privacy
privacy

Businesses must overhaul “outdated” recruitment mindset to tackle dearth of privacy expertise

Like many other disciplines within IT, businesses are struggling to fill crucial positions for months at a time - an issue somewhat of their own makin…
17 Jan 2023