Security Bulletin

The Office of Personnel Management was found to have violated the law by providing the Department of Government Efficiency with access to its databases containing information on current and former federal workers, as well as job seekers, following...

The House Appropriations Subcommittee on Homeland Security has voted to advance spending legislation that would provide the Cybersecurity and Infrastructure Security Agency with $2.7 billion for fiscal year 2026, which is $134.8 million lower than...

SecurityWeek reports that Adobe has fixed hundreds of flaws impacting several of its offerings, including code execution vulnerabilities in Acrobat Reader and Adobe Commerce, as part of this month's Patch Tuesday.

Cloud resilience is no longer just about surviving service interruptions; it's about operating securely under any circumstances, across any geographic area.

Despite respondents saying they're prepared for a cyberattack, it's a false sense of security, says IT services provider.

The two campaigns are good examples of the ever-shrinking time-to-exploit timelines that botnet operators have adopted for newly published CVEs.

Business and security executives in the South Asian nation worry over AI, cybersecurity, new digital privacy regulations, and a talent gap that hobbles innovation.

Two of the flaws have a CVSS score of 8.8, with one under active exploitation.

The bug is one of 66 disclosed and patched today by Microsoft as part of its June 2025 Patch Tuesday set of security vulnerability fixes.

ESG research suggests security teams are using enterprise browsers to complement existing security tools and address network access issues.