Security Bulletin

The updates include automated secrets rotation in Pulumi ESC, a secure GitHub Actions integration, granular role-based access control (RBAC), and expanded policy-as-code capabilities in Pulumi Insights.

The update also streamlines deployment of its Security Services Platform (SSP) for collecting cybersecurity telemetry.

U.S. cybersecurity technology firm ReliaQuest has secured more than $500 million from a new funding round that has lifted its valuation to $3.4 billion, according to SiliconAngle.

Ongoing intrusions leveraging the critical static credential backdoor flaw impacting the Cisco Smart Licensing Utility, tracked as CVE-2024-20439, have prompted the bug's inclusion in the Cybersecurity and Infrastructure Security Agency's Known...

The threat of ongoing cyber attacks will remain an issue of utmost urgency for security officials

Although Oracle has denied its cloud infrastructure services were breached, security experts recommend Oracle customers independently verify if they were affected and take measures to reduce exposure to potential fallout.

Next-level malware represents a new era of malicious code developed specifically to get around modern security software like digital forensics tools and EDR, new research warns.

The mu-plugins directory automatically loads files and is not listed with other plugins.

New research from Specops Software shows attackers successfully attack and gain access to RDP with the most basic passwords.

The department was able to trace the stolen funds to three main cryptocurrency accounts after being routed through a series of other platforms.

Credentials lied dormant for four years until a threat actor gained access and attacked the Samsung service ticket system.