Security Bulletin

TechCrunch reports that leading trust management platform Vanta had private information from less than 4% of its over 10,000 clients inadvertently exposed to other customers due to a product code change issue, which will be completely remediated by...

Major U.S. cryptocurrency exchange Coinbase has reportedly been long aware of a customer data leak involving outsourcing firm TaskUs' Indian employees, which has resulted in a major breach that may cost up to $400 million, according to Reuters.

Confusing threat actor attribution may lead to delayed response, tech firms say.

Misconfigurations expose DevOps tools to malicious deployment of XMRig.

Edge computing and stricter regulations could usher in a new era of AI privacy.

The Emergency Management and Response - Information Sharing and Analysis Center provided essential information to the emergency services sector on physical and cyber threats and its closure leaves an information vacuum for these organizations.

New details on the Cisco IOS XE vulnerability could help attackers develop a working exploit soon, researchers say.

Flaw in Cisco IOS XE exposes credentials in plain text.

An anonymous whistleblower has leaked large amounts of data tied to the alleged operator behind Trickbot and Conti ransomware.

Download eSentire's 10 questions to ask vendors about AI when choosing an MDR provider.

The country will require certain organizations to report ransomware payments and communications within 72 hours after they're made or face potential civil penalties.

The unpatched security vulnerabilities in Consilium Safety's CS5000 Fire Panel could create "serious safety issues" in environments where fire suppression and safety are paramount, according to a CISA advisory.