Security Bulletin

Acronis, which is based in Switzerland, offers the Cyber Protect Cloud platform, which assists managed service providers in safeguarding other organizations' IT infrastructure from cyber threats and backing up their critical data.

The report identified misconfiguration and inadequate change control as the leading cloud security threats followed by identity and access management issues, insecure interfaces and APIs, and poor execution of cloud security strategies -- all...

Updates to the Federal Acquisition Regulation and Defense Federal Acquisition Regulation Supplement contract requirements should be conducted by the Office of Management and Budget and the Defense Secretary, respectively, to ensure contractors'...

Most serious of the identified vulnerabilities was the high-severity flaw CVE-2024-33892, which could be exploited to enable cookie-based information exposure, an analysis from SySS GmbH researchers presented at this year's DEF CON security...

Such flaws, tracked as CVE-2024-27459, CVE-2024-24974, and CVE-2024-27903, involved OpenVPN's openvpnserv component, while another flaw relating to the Windows TAP driver, tracked as CVE-2024-1305, could be leveraged to enable denial-of-service...

Despite not specifying the malware leveraged to compromise its IT network, Schlatter revealed in a statement that it has been blackmailed by its attackers, who are believed to be demanding monetary payment in exchange for a decryption tool and the...

Such an intrusion against Evolution Mining, which has already been reported to the Australian Cyber Security Centre, comes months after Australian heavy rare earths mining firm Northern Minerals reported having its data exfiltrated and exposed...

The Defense Advanced Research Projects Agency launches TRACTOR program to work with university and industry researchers on creating a translation system that can turn C code into secure, idiomatic Rust code.

There’s a reason more than half the goals in CISA’s pledge focus on vulnerability management.

Google has cut off business ties with Russian websites by deactivating AdSense accounts effective in August.

CrowdStrike's president and CEO were both at Black Hat and DEF CON to face direct questions from customers and cybersecurity professionals.