So... You Want to Become a Penetration Tester?
Penetration testing is a key part of cybersecurity: finding and safely exploiting system flaws. Learn the skills, tools, and steps to start your career as an ethical hacker in this growing field.
Hacker arrested after exploiting 5,000 accounts in $4.5 million cryptojacking scheme
Suspect could face up to 15 years in Ukranian prison
Scam calls evolve: Crocodilus malware adds fake contacts to Android phones
Crocodilus monitors and impersonates many specific banking apps worldwide
Modder develops a new solution to bring the Commodore 64 into the HDMI era
Using hardware emulation to recreate pixel-perfect digital video and audio
Coinbase hack could get people killed, TechCrunch founder warns
Executives of companies that don't adequately protect customer data should be punished
Inside job at Coinbase leads to massive data breach, $20 million ransom demanded
The company says the breach could cost them up to $400 million
Valve confirms Steam 2FA leak affecting 89 million users, no passwords compromised
Steam wasn't hacked, but you should probably start using the authenticator app anyway
Hacker breaches TeleMessage system used by US officials, raising security concerns
The dangers of archiving encrypted messaging for compliance
Someone tried, and mostly managed, to run Linux in an Excel spreadsheet
"This was done mostly for fun." We bet
FBI warns China is using AI to sharpen cyberattacks on US infrastructure
Federal authorities are beginning to see AI signs in every step of an attack chain
Researchers find numerous Apple AirPlay vulnerabilities allowing "wormable" exploits over Wi-Fi
Apple already issued patches, so be sure to update your systems immediately
In brief: Security researchers have uncovered a wide-ranging set of vulnerabilities in Apple's AirPlay protocol that could allow attackers to hijack Apple and third-party devices remotely without user interaction. The exploit chain, dubbed "AirBorne," includes 23 individual bugs – 17 with official CVEs – and enables zero-click remote code execution on vulnerable systems.
4chan was offline for nearly two weeks after hack, but it's now back on
Source code, admin email addresses, and subscriber info were all exposed in massive hack
New study reveals cybersecurity threats in next-gen DNA sequencing
Researchers have identified multiple cyberthreats in every stage of the DNA sequencing process
Silicon Valley crosswalks hacked to play fake AI voices of Musk and Zuckerberg
"You don't know the level of depravity I would stoop to just for a crumb of approval"
PC gamers report hackers have taken over Star Wars Battlefront II
Battlefront II multiplayer modes are unplayable, EA silent on fix
Researcher uncovers network of risky Chrome extensions with over 4 million installs
Many ironically promise to scan Chrome for sketchy browser extensions
Oracle buried serious data breach from customers, now hacker has it up for sale
Company remains quiet since denying the attack, even after researchers conclude the breach is real
Are Passwords Dead? What Are Passkeys, and Why Everyone's Talking About Them
Tired of forgetting passwords and getting locked out of your accounts? Passkeys offer a simpler, safer way to log in---no passwords, no frustration, just a quick scan or tap on your device.
Hackers exploit Steam demo system to distribute malware, for the second time in a month
PSA: With over 40 million users, Steam is likely an attractive target for hackers, but very few cases of malware have occurred on the storefront over its two-decade history. Although a recent incident isn't as severe as last month's, it suggests that scammers are stepping up their efforts to bypass Valve's security measures.
Not for the first time: North Korean hackers used fake apps to spread spyware on Android
The malicious app had limited downloads before being removed
The United States no longer prioritizes Russia as a major cyber threat
"Putin is on the inside now"
Massive leak exposes the inner workings of top ransomware syndicate Black Basta
Some 200,000 private messages among hacking group members have been revealed
Record $1.5 billion crypto heist hits exchange, Ethereum reserves drained
Bybit CEO assures user funds are safe, victims to be fully reimbursed
US soldier accused of leaking Donald Trump and Kamala Harris' call logs pleads guilty to phone records theft
The suspect was arrested in December
Hackers used free Steam game to steal passwords, Valve warns affected users
Users who downloaded PirateFi should check their systems and change passwords