All posts

While open-source projects let you build almost any infosec solution, it’s crucial to realistically assess your team’s resources and the time it would take to achieve your goals.

Scammers are promising compensation from a bank to all comers — with no exceptions — and to boost their credibility they’ve even rolled out a deepfake newscast generated by AI.

Since 2016, a threat actor has been exploiting insecure plugins and themes to infect WordPress websites and redirect traffic to malicious websites.

Ever wondered why kids these days spend so much time online? Most parents do. So we found out what they’re actually doing there (spoiler: nothing bad).

Researchers find 57 potentially dangerous browser extensions in the Chrome Web Store. Here’s why they’re dangerous, and how not to fall victim.

A popular password manager was modified to allow attackers to steal passwords and encrypt users’ data. How to protect home computers and corporate systems from this threat?

Can your photos be viewed, stolen, or deleted when your smartphone is plugged into a public charging station? As it turns out — yes!

This post examines a hybrid email-and-phone scam in which attackers send emails from a genuine Microsoft email address.

Our experts at GReAT have uncovered a dangerous vulnerability in a smart-home control app that allowed attackers to disable physical security systems.

Planning a safe digital detox: a checklist to help prepare for a vacation and unwind in peace.

Businesses reaching the “acceptance stage”: given inevitable breaches — how to prepare for them?

Scammers are using Google ads to push fake versions of real websites – and they’re after business accounts and company data.

Newly discovered vulnerabilities in AirPlay allow attacks on Apple devices and other AirPlay-enabled products over Wi-Fi – including zero-click exploits.

We explore how cybercriminals are targeting IT specialists searching for a popular network scanner, using the Interlock ransomware attack as an example.

Scammers are exploiting Google services to send fake law enforcement inquiry notifications, making them look like they originate from accounts.google.com.

A year after its disastrous announcement, Microsoft is finally launching its AI-powered Recall feature on Copilot+ PCs. Is the new version secure, and what’s actually changed?

How organizations implement zero-trust principles, and what CISOs advise for project success.

How the situation with ransomware attacks on companies has changed, and why paying a ransom has become an even worse and more useless idea in 2025.

Why highlighted links to visited sites can be dangerous, and why a solution was over 20 years in the making.

A look at how Apple’s new child protection features work, what their limitations are, and why you still can’t do without third-party solutions.

This is your World Password Day reminder about how to create strong passwords and remember them.