Security Bulletin

Technica? Europcar? Cybercriminals are increasingly bluffing about ransomware attacks, and the cybersecurity community is helping by spreading their lies.

County services have come to a halt and are not expected to resume until next week; no threat actor has yet been identified.

The four security vulnerabilities are found in Docker and beyond, and one affecting runC affects essentially every cloud-native developer worldwide.

JCI's latest SEC filing notes that its smart-factory installations weren't compromised, allaying physical security fears.

CVE-2024-0402, CVSS score 9.9, may affect more than 4,800 unpatched GitLab servers.

Here are three ways to simplify the team’s cloud security strategy.

Both China-backed APTs and ordinary cyberattackers have seized on a pair of Ivanti VPN bugs for global exploitation.

Ukraine's Coordination Headquarters for the Treatment of Prisoners of War had its website subjected to a distributed denial-of-service attack during the weekend, from which it has since recovered from, reports The Record, a news site by cybersecurity...

A monitoring exercise identified user details in 716 compromised RIPE NCC accounts, plus other valuable credentials belonging to those victims.

Mandiant and CISA say security teams should prioritize the bugs as Ivanti released patches Jan. 31.

BleepingComputer reports that nearly 45,000 internet-exposed Jenkins open-source automation servers around the world could be compromised in attacks leveraging the critical remote code execution vulnerability, tracked as CVE-2024-23897, which has...

Over 1.5M hit by Keenan & Associates breach California-based insurance consulting and brokerage company Keenan & Associates had data from more than 1.5 million of its customers and employees compromised following a cyberattack in August, according to...