Security Bulletin

Security experts welcome the long-anticipated publication of the first post-quantum cryptographic standards as a significant milestone.

Such a loss stemmed from unknown attackers luring a non-executive employee to conduct several outbound wire transfers to their controlled accounts, said Orion in a filing with the Securities and Exchange Commission.

Included in the leaked data dump, which was 44 GB compressed and 500 GB uncompressed, were emails, mobile numbers, and QQ IDs in JSON format, which may have been processed in May 2023.

While only city employees were reported by officials to have been affected by the incident, Goodwolf noted that information exfiltrated and exposed by Rhysida included those of city hall visitors, sexual assault and domestic violence victims, and...

Even though disruptions faced by social media platform X, formerly Twitter, that resulted in delays in the interview between Elon Musk and former President Donald Trump on Monday have been attributed by Musk to a "massive" distributed denial-of...

More recent intrusions by the APT41-linked threat group — which were confirmed to hit Italy, Qatar, and the United Arab Emirates and suspected to compromise Romania and Georgia — involved the targeting of internet information services and other...

After infiltrating Kootenai Health's IT systems on Feb. 22, the ransomware operation spent 10 days to facilitate the theft of patients' full names, birthdates, Social Security numbers, government ID numbers, and driver's licenses, as well as medical...

Aside from spearheading the first-ever ransomware-as-a-service operation Reveton along with co-conspirators also charged in the U.S. in 2011, Silnikau also led the Angler exploit kit, which had been leveraged in malvertising campaigns against U.S...

Intrusions exploiting the flaw, which has been patched but not detailed as part of the June Patch Tuesday update, could be launched remotely by attackers who have obtained interactions from targeted users, according to Microsoft.

By giving users specific feedback on recent attacks and offering interactive forums, companies can keep their staffs up-to-speed on the latest threats.

The Democratic National Convention soon to take place in Chicago, already under heavy security, faces an additional threat in the form of stolen credentials for delegates.

The threat group is disrupting healthcare organizations. Victims can help themselves, though, even after compromise, by being careful in the decryption process.