Security Bulletin

An exploit using a poisoned model could enable exfiltration of sensitive fine-tuned LLM adapters.

Several versions of PostgreSQL are impacted, and customers will need to upgrade in order to patch.

In addition to his prison sentence, he will have to pay more than $1 million in restitution to his victims.

Group-IB says the "RustyAttr" trojan could potentially be used in future attacks once the attackers make it more robust.

As alerts pile up, the complexity can overwhelm security professionals, allowing real threats to be missed. This is where vendors must step up.

Cloud service providers are getting better at protecting data, pushing adversaries to develop new cloud ransomware scripts to target PHP applications, a new report says.

Minimum cybersecurity standards are critical in ensuring the defenses of U.S. pipelines and ports against cyber threat actors, according to Neuberger, who also stressed the importance of gauging regulatory compliance among such organizations while...

Attacks with ShrinkLocker, which leverages Microsoft BitLocker for accelerated drive encryption and a random password for re-encryption in Windows 7 and 8 or Windows Server 2008 and 2012 systems, have been deployed against organizations in Mexico...

Information compromised in the breach has been obtained from a system that had been inactive for nearly two years, noted DemandScience in an email sent to an individual who inquired the firm after seeing his data in the leak.

TAG-112 may be a subgroup of Chinese advanced persistent threat group Evasive Panda, also known as TAG-102 and StormBamboo, due to significant similarities in attack tactics, techniques, and procedures, an analysis from Recorded Future's Insikt Group...

Such an intrusion has not yet been confirmed by the AAP, whose website warned of the recent forced reset of all user passwords without further information but the organization was noted by Embargo to have already provided $1.3 million in exchange for...