Security bulletin

At least a portion of executive compensation going forward will be tied to meeting security goals and metrics.

Australian businesses and individuals now face government fines and consequences for paying ransoms or interacting with assets owned by LockBitSupp, aka Dmitry Yuryevich Khoroshev.

Identity security firm Silverfort shows how an adversary could bypass FIDO2 protections and SSO to hijack a session token for abuse.

MITRE's hackers made use of at least five different Web shells and backdoors as part of their attack chain.

Much of the funding will be used for product development and talent acquisition to cover more ground as the cybersecurity industry continues to evolve.

Vulnerabilities added to the CISA known exploited vulnerability (KEV) list do indeed get patched faster, but not fast enough.

A panel of former CISOs will lead the closing session of this week's RSA Conference to discuss challenges and opportunities.

Security pros say the move by law enforcement puts a significant dent into LockBit.

The city was forced to shut down its IT networks and continues to investigate a major cyber incident that happened over the weekend.