---

Criminals Hide Malware Behind Grammy-Winning Cover

Songs by Ariana Grande, Taylor Swift, and Post Malone are the most popular places.

---

Inside the Check Point Research Team's Investigation Process

The team sheds light on how their organization works and what they're watching in the threat landscape.

---

Google Sets Record High in Bug-Bounty Payouts

After a year of big changes, white hats reaped more from Google's programs than ever before.

---

Sprint Exposed Customer Support Site to Web

Fresh on the heels of a disclosure that Microsoft Corp. leaked internal customer support data to the Internet, mobile provider Sprint has addressed a mix-up in which posts to a private customer support community were exposed to the Web.

---

New web service can notify companies when their employees get phished

Abuse.ch launches new "I Got Phished" web portal.

---

9 Things Application Security Champions Need to Succeed

Common elements to highly effective security champion programs that take DevSecOps to the next level.

---

9 Things Application Security Champions Need to Succeed

Common elements to highly effective security champion programs that take DevSecOps to the next level

---

Pilfered Wawa Payment Card Data Now for Sale on Dark Web

The Joker's Stash underground marketplace is offering stolen payment card data from Wawa's recently disclosed data breach.

---

How to protect your privacy from Facebook

At long last, Facebook is letting us see the data it and other companies are collecting from you -- some of which has nothing directly to do with what you're doing on Facebook.

---

Critical Flaws in Magento e-Commerce Platform Allow Code-Execution

Admins are encouraged to update their websites to stave off attacks from Magecart card-skimmers and others.

---

Video: Zoom Researcher Details Web Conference Security Risks, 2020 Threats

Maya Horowitz with Check Point Research discussed recently-disclosed Zoom vulnerabilities that could have opened up web conferencing meetings to hackers.

---

Securing Containers with Zero Trust

A software identity-based approach should become a standard security measure for protecting workloads in all enterprise networks.

---

Businesses Improve Their Data Security, But Privacy - Not So Much

While the California Consumer Privacy Act will force companies to provide a modicum of meaningful privacy, World Privacy Day still mainly celebrates data security.

---

Threat Hunting Is Not for Everyone

Threat hunting is a sophisticated, advanced technique that should be reserved for specific instances and be conducted only by trained professionals.

---

Why Threat Hunting Is Not for Everyone

Threat hunting is a sophisticated, advanced technique that should be reserved for specific instances and be conducted only by trained professionals.

---

Cynet Empowers IT Resellers and Service Providers to Become Fully Qualified MSSPs

Due to increasing cyber incidents, more and more organizations come to realize that outsourcing their defenses is increasing the MSSP market opportunities.

---

Why Companies Should Care about Data Privacy Day

Marking yesterday's 14th anniversary of Europe's first data protection day reminds us how far we still have to go.

---

PCI SSC in Brazil: New Regional Engagement Board for 2020

 

PCI SSC has announced a newly expanded Brazil Regional Engagement Board. Here we talk with PCI SSC Associate Director, LA Region for Brazil, Carlos Caetano, about the value of the board, its role and agenda for 2020.

---

Wawa Breach May Have Affected More Than 30 Million Customers

Hefty collection of U.S. and international payment cards from the incident revealed in December found up for sale on dark-web marketplace Joker’s Stash.

---

RCE in OpenSMTPD library impacts BSD and Linux distros

Vulnerability, tracked as CVE-2020-7247, can be exploited remotely over the internet.