Stan Kaminsky

Discontinuing mandatory password rotations, banning outdated MFA methods, and other updates in the NIST SP 800-63 standards for digital account authentication and management.

How cybercriminals make money off victims’ love lives.

Why and how to create a local backup of cloud data, taking Notion as an example.

Small beacons like AirTag make it easy to find a lost wallet or keys — but are also often used for covert tracking. Now you can detect stalkers and protect yourself — regardless of what kind of smartphone you have.

Even at cruising altitude, cyberthreats can still ground your digital life — as proven by a recent arrest. How to protect yourself at 30,000 feet above sea level?

A new vulnerability allows remote attackers to gain root privileges on Linux servers. How easy is it for CVE-2024-6387 to be exploited – and how to prevent it

The new AI function in Microsoft Windows has already been dubbed a “security nightmare” on the internet. What risks does it carry, and how to stay safe?

The exact location of your router is publicly available through global Wi-Fi geolocation databases. Let’s explore why this is necessary, and the risks it entails and how to mitigate them.

Based on our analysis of ZKTeco vulnerabilities, we dissect the risks associated with biometric authentication.

How to use private browsing mode, what it doesn’t protect against, and why Google is deleting five billion dollars’ worth of user data.

Today we discuss which services and applications should be patched first, and what attackers are focusing on.

We explore whether it’s possible to reveal all your secrets via your smartphone’s on-screen keyboard.

What are the most common MITRE ATT&CK techniques encountered in real-world incidents — and how to neutralize them? We investigate using statistics from Incident Response and MDR services!

Can you catch malware by downloading files from Microsoft’s repositories on GitHub? Turns out, you can. Stay alert!

In response to EU regulations, WhatsApp will soon offer interoperability with other messengers. Do we need it? And is it secure?

Advertising firms’ extensive collection of personal data is becoming of great use to intelligence agencies. So how to guard against mass surveillance?

Proxyware can make it difficult to detect cyberattacks on organizations — sometimes making the latter unwitting accomplices in crimes.

How to tell a real photo or video from a fake, and trace its provenance.

Today we dive into note-taking apps, to-do lists, and diaries that use end-to-end encryption: privacy-focused cousins of popular apps like OneNote, Evernote, Apple’s Notes, and Google Keep.

Got a message from your boss or coworker asking you to “fix a problem” in an unexpected way? Beware of scammers! How to protect yourself and your company against a potential attack.

To go undetected, attackers can operate in your network without any malware at all. How to detect them and prevent damage?