Security Bulletin

More than 2 million jobseekers' personal data and email addresses have been exfiltrated by the ResumeLooters threat operation following SQL injection and cross-site scripting attacks against at least 65 websites, most of which are in the retail and...

However, not everyone agrees with the NVD's assessment of CVE-2023-40547 being a near-maximum severity bug.

Threat actors are increasingly using virtual cameras and emulators for digital injection attacks.

Even clients are having a difficult time searching for information on cases online.

Security pros say teams need to patch right away because attackers can leverage the bug to gain control of the entire boot process.

More companies are opting for managing complex security capabilities, such as data detection and response.

Cyberattackers can exploit a vulnerability in JetBrain's continuous integration and delivery (CI/CD) server (a popular APT target) to gain administrative control.

How a light railway in Israel is fortifying its cybersecurity architecture amid an increase in OT network threats.

The company said there was no evidence PII spilled outside the organization after a staff member gained unauthorized access to a file.

The exercises are aimed at finding security gaps in the nation's banking infrastructure.

Super Bowl 2024 in Las Vegas is a magnet for cybercrime. Here are a few things businesses should consider to minimize their risk.