Security Bulletin

Aside from deferring the delivery of breach notifications two months later, Visionworks also did not sufficiently defend its systems, resulting in the exfiltration of customers' names, birthdates, Social Security numbers, home and email addresses...

Power Platform's OData Web API Filter was impacted by two of the discovered security issues, the first of which stemmed from inadequate access control that enabled access to sensitive data and potential exploitation to obtain complete hashes while...

Most of the impacted services have since been restored but additional details regarding the identity of the intrusion's perpetrators have not been provided by the firm.

"This means that passwords used for mail access may be intercepted by a network sniffer. Additionally, service exposure may enable password guessing attacks against the server," said Shadowserver.

Officials revealed that the department's Office of Financial Research had also been infiltrated as part of the incident, which was noted to have stemmed from an attack against the agency's implementation of the BeyondTrust remote support software-as...

A proactive approach by business that looks to align with government can make cybersecurity more of a priority in Washington.

Tech giant will be paying out a $95 million settlement over claims it exposed user data.

Surveyed COOs reported savings of up to 7.7% of annual revenue due to GenAI use.

The changes to the healthcare privacy regulation with technical controls such as network segmentation, multi-factor authentication, and encryption. The changes would strengthen cybersecurity protections for electronic health information and address...

Windows servers are vulnerable to a dangerous LDAP vulnerability that could be used to crash multiple servers at once and should be patched immediately.