Security Bulletin

New standards seen as a good move, but some worry it may breed complacency in security.

Feeling creative? Have something to say about cybersecurity? Submit your caption and our panel of experts will reward the winner with a $25 gift card.

While not the apocalypse, the DOGE cuts are undermining public trust in the cybersecurity agency.

In the end, the question isn't whether large language models will ever forget — it's how we'll develop the tools and systems to do so effectively and ethically.

Despite US sanctions, Tornado Cash processed approximately $100 million per month last year.

Experts emphasized that many ransomware groups now operate as sophisticated businesses.

A vulnerability in Cocospy and Spyic is exposing the personal data of millions of individuals.

The campaigns involve attackers embedding malicious links within legitimate domains.

The scam emails were found to originate from a legitimate PayPal address.

Fortanix is implementing post-quantum cryptographic algorithms in its security suite to protect against future attacks.

Attackers are using a novel malware that takes on different file names each time it's deployed; it also boasts an anti-removal mechanism to target universities and government offices.

One third of codebases analyzed by Black Duck were vulnerable to jQuery CVE-2020-11023 and CVE-2020-11022.