Security Bulletin

Both campaigns involved the distribution of malicious emails purporting to be invoices, purchase orders, or quotation requests with attachments, which when opened triggers a PowerShell script fetching the trojanized image and executing a .NET-based...

Malicious emails under the guise of a U.S. government official sought to lure individuals part of the government and diplomacy sectors into joining a WhatsApp group on non-governmental initiatives for Ukraine NGOs through a shortened link that...

Aside from subjecting government IT contractors to minimum cybersecurity standards, Biden's EO also broadens sanctions against foreign cyber adversaries, mandates new cryptographic standards for federal agencies, orders the development of artificial...

A highly targeted cyber-intelligence campaign adds fuel to the increasingly complex relationship between the two former Soviet states.

GoDaddy must adhere to a number of security compliance requirements by the FTC.

The backdoor spread laterally after initial access via a suspected SocGholish malware download.

New order mandates securing the federal software supply chain and communications networks, as well as deploying AI tools to protect critical infrastructure from cyberattacks — but will the Trump administration follow through?

The FTC claims that the Web hosting company's security failures led to several major breaches in the past few years.