Security Bulletin

Increasing security risks associated with the Border Gateway Protocol used for internet routing — including cyberespionage, data theft, and critical infrastructure disruption — has prompted the Federal Communications Commission to propose new rules...

A look into three top trends and concerns in identity and access management.

Major U.S. internet, phone, and TV service provider Frontier Communications had data from 751,895 individuals, including names and Social Security numbers, compromised following an April cyberattack by the RansomHub ransomware operation, according to...

If passed, APRA will be a giant leap forward for the rights and freedoms of Americans.

Security Affairs reports that Chinese shopping platform Pandabuy has been extorted once again by the same threat actor to which it has already paid a ransom in exchange for not exposing stolen data.

The New York Times confirmed its GitHub repository was breached in January following the leak of its internal source code and data as part of a 273 GB archive on the 4chan message board, reports BleepingComputer.

Threat actors have launched a new phishing campaign targeting Spanish-speaking individuals with an updated Agent Tesla malware variant, Hackread reports.

Misconfigured Docker remote API servers have been exploited by the threat actor Commando Cat to distribute cryptocurrency mining malware as part of an ongoing cryptojacking campaign, according to The Hacker News.

BleepingComputer reports that numerous distributed denial-of-service attacks have been deployed by hacktivist operations against European political parties amid the European Parliament election season.

Attacks with the SPECTR information-stealing malware were discovered by Ukraine's Computer Emergency Response Team to have been deployed against the country's defense forces by Luhansk People's Republic-associated threat operation UAC-0020, also...

The threat environment will continue to grow in complexity. Now is the time for organizations to streamline how they manage and mitigate overlooked vulnerabilities.

More than 300 Russian defense, tech, manufacturing, aerospace, and education entities have been subjected to attacks by the Sapphire Werewolf hacking operation distributing the Amethyst information-stealing malware since March, reports The Record, a...