Security Bulletin

Canadian officials say the contractors the government uses to relocate members of its government employees were breached.

Healthcare cyber services executive Vikas Singla admits to hobbling hospital operations, then using the incidents to try and gin up extra business.

Omdia Cybersecurity Senior Research Director Maxine Holt shares Omdia’s definition of digital resilience and why the concept has become critical to successful enterprise digital dependence.

Earlier this month it was Looney Tunables, now Kinsing launched attacks on Apache ActiveMQ to infect systems with malware and cryptominers.

Mounting cybersecurity threats against the U.S. healthcare and public health sector have prompted the Cybersecurity and Infrastructure Security Agency to unveil new mitigation guidance nearly a month after the release of a federal healthcare...

SecurityWeek reports that Morgan Stanley has been imposed a $6.5 million fine for its failure to properly remove unencrypted data from decommissioned devices that may have exposed millions of customers' sensitive information.

Major technological outages persist at the British Library, the UK's national library, nearly a month after being impacted by a cyberattack, which has since been confirmed to involve ransomware, reports The Record, a news site by cybersecurity firm...

Canada had information from an undisclosed number of current and former government employees, including those in the Canadian Armed Forces and Royal Canadian Mounted Police, exposed following data breaches impacting its contractors Brookfield Global...

Idaho National Laboratory had its Oracle Human Capital Management servers for its human resources apps compromised by the SiegedSec hacking operation, which claimed to have accessed "hundreds of thousands of user, employee, and citizen data,"...

TechCrunch reports that Denver-based patient engagement firm Welltok had sensitive data from over 1.6 million individuals compromised after its MOVEit file transfer server was subjected to a widespread hack by the Cl0p ransomware operation.

Widely known malware-sharing community VX-Underground has been implicated by a new Phobos ransomware variant to be the developer of the updated strain, reports BleepingComputer.

University of Jeddah partners with Resecurity to teach cybersecurity skills.