Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. Update, Dec. 25, 2024: This story, originally published Dec.

Hackers are bypassing Google search protections to push malicious Chrome extensions. Update, Jan. 10, 2025: This story, originally published Jan. 9, now includes a statement from Google. I recently ...

Security researchers discovered a new malicious browser extension called Rilide, that targets Chromium-based products like Google Chrome, Brave, Opera, and Microsoft Edge. The malware is designed to ...

Scattered Spider now targeting airlines. Bypasses 2FA via help desk tricks. Strict security protocols are necessary for prevention. The FBI has issued a fresh cybersecurity alert, warning that the ...

A new version of the phishing kit Tycoon 2FA, which uses advanced tactics to bypass multi factor authentication (MFA) and evade detection, has been analyzed by threat researchers at Barracuda. Tycoon ...

Google released an update for its popular authenticator app that stores a “one-time code” in cloud storage, allowing users who have lost the device with their authenticator on it to retain access to ...

The FBI warns attackers are impersonating employees to bypass 2FA, and they're using IT help desks as the entry point Scattered Spider now targeting airlines. Bypasses 2FA via help desk tricks. Strict ...

A phishing-as-a-service offering being sold on the Dark Web uses a tactic that can turn a user session into a proxy to bypass two-factor authentication (2FA), researchers have found. The service, ...