Security Bulletin

The company temporarily disabled the application and patched the vulnerability, though affected individuals should still remain vigilant.

Threat actors were actively exploiting CVE-2023-36025 in Windows SmartScreen as a zero-day vulnerability before Microsoft patched it in November.

Threat actors were actively exploiting CVE-2023-36025 in Windows SmartScreen as a zero-day vulnerability before Microsoft patched it in November.

No one has turned the job market into an attack surface quite like North Korea, which plays both sides for financial gain and, possibly, espionage.

A successful CISO should play a leading role in digital transformation and cloud migration initiatives in their organization. The CISO is responsible for making sure technical security controls are designed and implemented appropriately, and changes...

Canadian officials say the contractors the government uses to relocate members of its government employees were breached.

Healthcare cyber services executive Vikas Singla admits to hobbling hospital operations, then using the incidents to try and gin up extra business.

Omdia Cybersecurity Senior Research Director Maxine Holt shares Omdia’s definition of digital resilience and why the concept has become critical to successful enterprise digital dependence.

Earlier this month it was Looney Tunables, now Kinsing launched attacks on Apache ActiveMQ to infect systems with malware and cryptominers.

Mounting cybersecurity threats against the U.S. healthcare and public health sector have prompted the Cybersecurity and Infrastructure Security Agency to unveil new mitigation guidance nearly a month after the release of a federal healthcare...

SecurityWeek reports that Morgan Stanley has been imposed a $6.5 million fine for its failure to properly remove unencrypted data from decommissioned devices that may have exposed millions of customers' sensitive information.

Major technological outages persist at the British Library, the UK's national library, nearly a month after being impacted by a cyberattack, which has since been confirmed to involve ransomware, reports The Record, a news site by cybersecurity firm...