Security Bulletin

Imprivata's Chip Hughes discusses how outdated methods create friction, increase risk, and undermine compliance.

A group that Google is tracking as UNC6040 has been tricking users at many organizations into installing a malicious version of a Salesforce app to gain access and steal data from the platform.

Multiple malicious packages were discovered on npm, PyPI and RubyGems repositories.

During a recent SC Media webcast, OPSWAT's George Prichici discussed the critical importance of comprehensive file security strategies for financial institutions, highlighting the need for advanced threat detection, sanitization, and integration...

By understanding the neurological realities of human attention, organizations can build more sustainable security operations that protect not only their digital assets but also the well-being of those who defend them.

An international group of researchers found that simply rerecording deepfake audio with natural acoustics in the background allows it to bypass detection models at a higher-than-expected rate.

Malicious RubyGems pose as a legitimate plug-in for the popular Fastlane rapid development platform in a geopolitically motivated attack with global supply chain reach.

As cybercrime grows more structured and AI-powered, many enterprises remain dangerously unprepared, often lacking the threat intelligence needed to predict or counter increasingly sophisticated attacks, reports Frontier Enterprise.