Security Bulletin

Hackers are valuing quality over quantity, using AI to upgrade their phishing attacks rather than multiply them.

As part of the quarterly Rev Up to Recert program, Cisco U. is offering the SDSI Learning Path—free—from May 29 to July 13, 2026.

Initial methods suggest attackers had likely mapped out Ivanti's asset landscape upfront and acted quickly once the exploit became public.

Operational technology security remains as difficult as ever, with even the best practice recommendation falling short.

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

Cisco's Integrated AI Security and Safety Framework and our recent work on defining taxonomy constitutions focused on defining and detecting common risks shared among enterprises when deploying AI. However, while most enterprises share a lot of.....

North Korea's gross domestic product (GDP) has grown, in part because of the cybercrime gains of groups linked to the nation, which target business and financial firms.

The new directive gives federal agencies three days to fix the most dangerous flaws, while less severe issues can be deferred.

MS-ISAC gives SLED organizations the threat intelligence—but the real challenge is turning that shared intelligence into automated, real-time protection across every agency and school district, no matter how small.

Bug bounty research inadvertently led organizations to believe they were being breached through their ServiceNow instances.