Security Bulletin

While hacktivists claimed more than 100 successful attacks against Indian government, education, and military targets, the attacks were overblown in most cases and often did not even happen.

Browser fingerprinting and additional payload encryption are the most recent methods used.

Patches include five vulnerabilities actively targeted in the wild, as well as two others with public exploit code available.

Capital One executives share insights on how organizations should design their security programs, implement passwordless technologies, and reduce their attack surface.

Microsoft's May 2025 Patch Tuesday update also contains four other actively exploited zero-day security vulnerabilities, two publicly known bugs, and 12 critical patches.

Tidrone concentrated on military entities and the satellite sector, using their associated service providers and ERP software to infect not just drones but all the entities that are part of their supply chains.

The EU cyber agency ENISA has launched its vulnerability database, the EUVD; security experts shared their thoughts regarding what this means for CVEs, as well as the larger conversation around how bugs are tracked.

CISA responded to concerns that the flaw potentially lets attackers access entire message histories from Signal clones.

Though the app claims to use end-to-end encryption, hackers have reportedly accessed archived data on the app's servers via a new vulnerability.

Cloud security isn’t just about firewalls and permissions. Hidden missteps in your network architecture could be opening the door to costly breaches. Here are three oversights that full mesh SASE architecture helps eliminate.

Cloud adoption has transformed how businesses operate—but it’s also introduced new risks. From fragmented connectivity to poor visibility, traditional network architectures are full of blind spots. Harmony SASE’s full mesh design offers a smarter...