Security Bulletin

The vendor had originally assessed the flaw as low risk but now says it is a critical issue that enables remote code execution.

CrushFTP CEO Ben Spink slammed several cybersecurity companies for creating confusion around a critical authentication bypass flaw that's currently under attack.

Fast flux lets attackers set up complete C2 ops inside an enterprise network, prompting security pros to say it’s a “big-time wakeup call.”

The malware, first discovered in 2016, has been updated over the years, and the latest version is now hiding in the firmware of counterfeit mobile phones.

Co-founders Michael Sutton and David Endler raised $32 million to invest in early stage cybersecurity startups as well as to provide mentoring support.

Polices that forbid employees from divulging company details are worthless if the same information can be obtained from sources employees have no control over.

Enterprise Security Weekly Host Adrian Sanabria and Axiad Chief Innovation Officer and Co-Founder Bassam Al-Khalidi discuss the challenges of credential management in critical infrastructure, emphasizing the need for phishing-resistant, passwordless...

With an increase in cyber-physical attacks that can cause significant disruptions, financial fallout and safety concerns for victim organizations, IT and OT security teams cannot keep working in silos.

More than $1.67 billion worth of cryptocurrency has been exfiltrated across nearly 200 heists between January and March, which is not only 303% higher than the fourth quarter but also the highest amount of pilfered digital assets on record...

Minnesota's Lower Sioux Indian Community had operations of its healthcare facility, government center, and casino taken down by a cyberattack initially disclosed by officials on Friday and later claimed by the RansomHub ransomware-as-a-service...

Cybernews reports that most of the over 2.8 billion user records belonging to X, formerly Twitter which were purported by threat actor "ThinkingOne" to have been exfiltrated by a disgruntled employee were publicly available information.

Small businesses are the backbone of the U.S. economy, yet they face growing cyber threats—especially from nation-state actors like China—that jeopardize not only their survival but also national security, demanding urgent action at all levels of...