Security Bulletin

WordPress site takeover is possible without authentication via the actively exploited vulnerability.

A 21.58 GB database of stolen personal voter data from Iraq's Independent High Electoral Commission (IHEC) may have been the result of a supply chain attack.

Operation Cronos, a collab between authorities in the US, Canada, UK, Europe, Japan, and Australia — seizes data and website associated with the prolific cybercriminal organization and its affiliates.

A catastrophic cyber event hasn't yet come to pass, but vast amounts of personal data have been compromised. We need to be prepared for worst-case scenarios.

Enterprises typically use the Java-like programming language to customize their Salesforce instances, but attackers are hunting for vulnerabilities in the apps.

The world’s most prolific ransomware group has been dismantled by a large international law enforcement taskforce.

The Associated Press reports that Microsoft, Google, Meta, Amazon, OpenAI, and 15 other major tech firms have pledged at the Munich Security Conference to voluntarily combat the utilization of artificial intelligence in deepfakes meant to disrupt...

Up to 275 credit unions across the U.S. could have been compromised in account takeover and credential theft attacks due to critical vulnerabilities in the CU Solutions Group content management system that could be leveraged for "ultra admin"...

One year after its emergence in the threat landscape, Alpha ransomware has been discovered to resemble the Netwalker ransomware-as-a-service operation that was dismantled in January 2021, BleepingComputer reports.

Pennsylvania's Washington County has provided $346,687 worth of cryptocurrency to suspected Russian hackers behind a ransomware attack against its systems last month, according to The Record, a news site by cybersecurity firm Recorded Future.

Hackread reports that global human resource consulting firm Robert Half International has been claimed to be compromised by threat actors IntelBroker and Sanggiero in separate attacks earlier this month, which resulted in significant data...

Recent cyberattacks against major global financial services provider Prudential Financial and major U.S. retail mortgage lender loanDepot have been claimed by the ALPHV/BlackCat ransomware operation, reports BleepingComputer.