Security Bulletin

Organizations can go a long way toward preventing spoofing attacks by changing one basic parameter in their DNS settings.

Actual legislation is a long shot and a decade away, but policy experts are looking to jump-start the conversation around greater legal liability for insecure software products.

Two years after a warrant went out for his arrest, Aleksanteri Kivimäki finally has been found guilty of thousands of counts of aggravated attempted blackmail, among other charges.

Scattered Spider has a history of both traditional and hybrid attacks on cloud enterprise environments.

How continuous threat exposure management (CTEM) discovers, prioritizes, and validates potential risks and aligns remediation with business goals and compliance frameworks.

Like any security control, identity needs to be reevaluated as threats advance.

Threat actor dropped in to Dropbox Sign production environment and accessed emails, passwords, and other PII, along with APIs, OAuth, and MFA info.

Security pros see the Dropbox Sign breach as not just a blow to Dropbox, but a really bad day for electronic signatures.

Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card.

Government agencies warn industry to improve their operational technology security following breaches of North American and European systems.

CNN reports that Ukrainian Yaroslav Vasinskyi, who is affiliated with the REvil ransomware gang, has been given an over 13-year prison sentence for his involvement in the far-reaching ransomware attack against Florida-based software firm Kaseya in...