Security Bulletin

The nation-state threat group has been breaching providers of remote management tools, identity management providers, and other IT companies to access networks of targeted entities, according to Microsoft.

The new cloud security startup uses AI to scan cloud applications and systems for issues before they are deployed.

The chipmakers patched bugs, mostly critical and high severity, that affect everything from smartphones to TVs to artificial intelligence platforms.

Banking organizations argue the rule will create an undue burden and goes against congressional intent.

At least seven typosquatting packages infiltrate the Go ecosystem.

The Iran-linked nation-state group made its debut with a stealthy, sophisticated, and laser-focused cyber-espionage attack on targets in UAE.

The letters mimic typical ransom notes and threaten to delete or leak compromised data if payments aren't made, though none of the organizations that received them had active ransomware attacks.

Here are four ways security teams can build OSINT-aware strategies.

Join ICIT for this exclusive virtual roundtable convening top leaders in cybersecurity, energy infrastructure, and public policy to discuss strategies for fortifying the nation’s energy sector against evolving cyber risks.

Many CISOs are weighing the benefits of going virtual as a consultant. Can the pendulum swing in the other direction?

TgToxic functions as a banking trojan that targeted cryptocurrency, banking and financial apps.

The group has a history of cyber espionage dating back to 2017.