Security Bulletin

State-led data privacy laws and commitment to enforcement play a major factor in shoring up business data security, an analysis shows.

Purportedly included in the exfiltrated information were officers' personal details and photos, gun licenses, email addresses, suspects' and criminals' personal data, sex offender employment permit details, and other classified documents, according...

Infiltration of rural hospital's systems led to the theft of individuals' names, birthdates, Social Security numbers, health insurance details, and medical history and treatment data, said Memorial Hospital & Manor in a filing with the Office of the...

"Our technology response team has been working with third-party specialists to fully restore our systems and investigate the nature of these disruptions," said a Lee Enterprises spokesperson, who noted an ongoing effort to identify any information...

Iran accounted for most of the vulnerable KerioControl instances, followed by the U.S., Italy, Germany, and Russia, according to The Shadowserver Foundation.

Salt Typhoon underscores the urgent need for organizations to rapidly adopt modern security practices to meet evolving threats.

The popular generative AI (GenAI) model allows hallucinations, easily avoidable guardrails, susceptibility to jailbreaking and malware creation requests, and more at critically high rates, researchers find.

An international law enforcement operation targeting the Phobos-linked group was led by German authorities.

Improvements in cyber hygiene and resiliency made it possible for victim organizations to skip paying ransom amounts in 2024.

The likely Vietnam-based threat actor has been using two zero-days in VeraCore's warehouse management software in some of its latest cyberattacks.

After claiming responsibility for the ransomware attack in 2024, the "Embargo" ransomware group posted 1.15 terabytes of stolen data to its public Tor site.