Security Bulletin

There's no time to waste: For organizations on the fence about patching the critical bug in ActiveMQ, the new proof-of-concept exploit should push them towards action.

Security budgets will benefit from new priorities, streamlined responses rather than wholesale cost-cutting in light of cyberattacks and increased regulatory requirements.

The library said that it expects many of its services to be restored in the forthcoming weeks.

For several years operators at New Delhi-based Appin hacked into, spied on, and stole data from targets around the world for clients that included private investigators, government agencies, law enforcement, and others.

Building a resilient incident response team requires more than a simple combination of tools and on-call rotations.

SiliconAngle reports that Cloud Security Alliance has unveiled the cybersecurity sector's first-ever zero-trust training and credential program dubbed "Certificate of Competence in Zero Trust" amid the growing need for zero-trust in information...

Almost two-thirds of city and county officials noted having inadequate cybersecurity budgets even though 55% had increased spending this year, compared with 7% who noted reduced cybersecurity allocations, StateScoop reports.

Mounting cyberattacks against K-12 schools and libraries across the U.S. since the school year began in August have prompted the Federal Communications Commission to propose a new "Schools and Library Cybersecurity Pilot Program," reports The Record...

SecurityWeek reports that three new vulnerabilities impacting SAP software have been addressed as part this month's Security Patch Day.

Vulnerable Apace ActiveMQ instances impacted by the maximum severity bug, tracked as CVE-2023-46604, could be exploited to achieve arbitrary code execution from memory through a new proof-of-concept exploit, The Hacker News reports.

Denmark had operations at 22 of its energy firms significantly disrupted in ongoing coordinated intrusions that involved the exploitation of a vulnerability in Zyxel firewalls since May, which is the country's largest cyberattack yet, according to...