Security Bulletin

Potential intrusions commence with the delivery of a specially crafted session cookie with a base64-encoded null bytes string to the '/cgi-bin/sslvpnclient' SSL VPN authentication endpoint, prompting an improper session validation that logs out...

Most of the leaked information consisted of shipping labels and customs declaration forms containing individuals' full names, home addresses, and phone numbers, as well as their order details, according to Cybernews researchers, who noted that...

Included in the exposed data were discussions regarding development and technical topics, as well as files uploaded to OmniGPT, such as office projects, market analysis reports, university assignments, police verification assignments, and others that...

Massachusetts' Wakefield Public Schools announced that the PowerSchools hack not only exposed 1,384 current and former students' medical information but also special education plans and custody alerts, including restraining orders and legal details...

While Kraken ransomware was reported to have claimed the theft of Cisco's Windows Active Directory environment credentials, usernames and related domains, accounts' unique relative identifiers, and NTLM hashes through several credential dumping tools...

Sandworm, also known as APT44, Seashell Blizzard, and UAC-0113, launched numerous malware intrusions as part of the campaign, the most recent of which involved the distribution of a fake KMS activation tool containing the BACKORDER malware loader...

LevelBlue's Theresa Lanowitz discusses what cyber resilience is and the path to get there.

When it comes to keeping patient information safe, people empowerment is just as necessary as deploying new technologies.

More than half of attacks on Indian businesses come from outside the country, while 45% of those targeting consumers come from Cambodia, Myanmar, and Laos.

The Russia-based bulletproof hosting service provided infrastructure to LockBit affiliates, officials say.

The analyst firm recommends defining security and governance processes while reducing friction for business stakeholders.

The combined companies will create a seamless ecosystem of trust, governance, risk, and compliance.