Security Bulletin

The notorious cyber espionage group has been harrying French interests for years, and isn't flagging now as the Paris Olympics approach.

The old, but newly disclosed, vulnerability is buried deep inside personal computers, servers, and mobile devices, and their supply chains, making remediation a headache.

Reported ban on firm's software sales is latest example of rising tensions between U.S. and Russia.

Flaw could cause buffer overflow and malicious code execution.

API calls now account for the majority (71%) of web traffic.

The stream was briefly knocked offline, preventing millions of fans from accessing the game. Poland's head of digital services says "all leads lead to the Russian Federation."

Had the bill become a law, it would have given consumers the right to sue companies that violate their privacy.

Hacktivist group GhostSec has expressed its desire to return to its roots, ending all financially motivated cybercrime efforts after obtaining sufficient income from the GhostLocker ransomware-as-a-service operation and the sale of databases...

The "Markopolo" threat actors built a convincing brand and Web presence for fake software to deliver the dangerous Atomic macOS stealer, among other malware, to carry out cryptocurrency heists.

SecurityWeek reports that escalating exploitation of VPN vulnerabilities to facilitate significant cyber incidents has prompted the FBI, Cybersecurity and Infrastructure Security Agency, the Canadian Centre for Cyber Security, and New Zealand's...

Attackers could leverage a pair of medium-severity vulnerabilities in the Mailcow open-source mail server software older than version 2024-04 to facilitate arbitrary code execution, account takeovers, and sensitive data access, reports The Hacker...