Security Bulletin

The prolonged attack, which lasted 300+ days, is the first known compromise of the US electric grid by the Voltzite subgroup of the Chinese APT; during it, the APT attempted to exfiltrate critical OT infrastructure data.

In the past, the vulnerability was exploited to drop Mirai botnet malware. Today, it's being used once more for another botnet campaign with its own malware.

AI has accelerated text and voice-based scams – here’s how security teams can protect identities.

The executives will be investigated under Spain’s “discovery and disclosure of secrets” law.

The flaw compromises Perforce’s core authentication protocol.

The package impersonated popular Python libraries such as python-utils and utils.

Investment scams were the most financially damaging, accounting for $5.7 billion in losses.

Next-gen SOAR platforms outpace legacy solutions by offering AI-driven automation, no-code workflows, and seamless integrations, enabling faster, smarter, and more scalable security operations.

To truly become indispensable in the boardroom, CISOs need to meet the dual demands of defending against sophisticated adversaries while leading resilience strategies.

A US congressional committee has urged Americans to stop using wireless routers made by TP-Link.

Discontinuing support would enable CISA to prioritize "mission critical areas," said a spokesperson.