Security Bulletin

SecurityWeek reports that major Dutch bank ABN Amro Bank has disclosed the possible compromise of its clients' information following a ransomware attack against its third-party document and token provider AddComm.

Operations at the Seattle Public Library over the Memorial Day weekend have been interrupted by a ransomware attack, which led to the shutdown of its wireless network, online catalog, and computers, reports The Record, a news site by cybersecurity...

U.S. ticket sales and distribution firm Ticketmaster was admitted to have been hacked by the ShinyHunters threat operation, which claimed to exfiltrate information from 560 million users part of a 1.3 TB database, according to Hackread.

It's time to rethink the pivotal role incentives play in shaping behavior to find and disclose software vulnerabilities. More accurate guidance to reflect real-world risks and a tiered verification process to establish potential impact could slow...

Cybernews reports that more than 1.1 million secrets have been publicly exposed by the environment files of 58,364 websites around the world, most of which are in the U.S., followed by Germany, India, France, and Singapore.

WooCommerce e-stores have been compromised with e-skimmers meant to exfiltrate credit card details through an attack campaign exploiting Dessky Snippets, an obscure WordPress plugin enabling custom PHP code insertions that has since amassed more than...

As organizations depend on non-human identifies to manage modern IT environments, protecting them has become an important priority for security teams.

Targeting India's government, defense, and aerospace sectors, the cyber-threat group now attacks Linux as well as Windows in its quest to compromise the Indian military's homegrown MayaOS Linux systems.

Now that we have reviewed what went wrong regarding ransomware defenses, let’s look at how organizations can better protect themselves.

In attacks over the past three months, threat actors have exploited more than 80 vulnerabilities to accelerate distribution of the Mirai variant.

The ransomware group claims to have information on at least 500,000 Christie’s clients.

Reasonable cybersecurity is highly subjective and organizations need to plan carefully in order to quantify cyber risk and apply security controls.