Security Bulletin

TechCrunch reports that Facebook was revealed to have covertly conducted Snapchat network traffic interception and decryption since 2016 as part of the initiative dubbed "Project Ghostbusters" that sought to bolster user behavior analysis and better...

More than 1,800 stores on major e-commerce platform Shopify using Saara's EcoReturns and WyseMe plugins had 25 GB of data exposed due to the developer's misconfigured MongoDB database, according to Cybernews.

Major UK street newspaper and social enterprise The Big Issue had its systems confirmed to be impacted by a cyberattack days after the intrusion was admitted by the Qilin ransomware operation, which claimed the exfiltration of 550 GB of confidential...

Industrial cyberespionage could potentially be facilitated by the new suspicious SqzrFramework480 NuGet package seemingly targeted to developers using tools by Chinese industrial firm Bozhon Precision Industry Technology Co., according to The Hacker...

Today, Google released its report “We’re All in this Together: A Year in Review of Zero-Days Exploited In-the-Wild in 2023.”

A PoC exploit is available for the critical flaw, which was added to CISA’s KEV catalog Monday.

By building continuous IT/OT visibility, companies can better manage the security of their critical infrastructure.

Why dwell times -- defined as when an attack starts and when it is detected – have declined.

Threat actor targets AI workloads, believed to be first exploited in the wild.

Starting now we officially welcome your to nominate your top products, solutions and standout individuals.

All of the vulnerabilities should be remediated by federal agencies by Apr. 15, according to CISA.