Security Bulletin

Demand for digital forensics and incident response (DFIR) surges in the Middle East, a new IDC report finds. Is automation the answer?

PCI DSS v4.0 is the future of the payment card industry's information security standard, but businesses must continue to look beyond this guidance and engage in proactive strategies of their own.

The rapid growth of APIs creates a widening attack surface and increasing unknown cybersecurity risks.

Microsoft is aware and has released patches associated with the two Open-Source Software security vulnerabilities, CVE-2023-4863 and CVE-2023-5217. Through our investigation, we found that these affect a subset of our products and as of today, we...

Securing AI within your organization starts with understanding how AI differs from traditional business tools. Google's Secure AI Framework provides a model for what to do next.

Implementing a shift-left process in cybersecurity requires pulling together people, processes, and technology.

The Israeli company developed highly-targeted, mobile malware that would make any APT jealous.

An internal memo cites DHS floor plans that could have been accessed in the breach.

The federal department that oversees the US diplomatic corps abroad suffers a serious lack of visibility into the cyber threats it faces and the security vulnerabilities it's harboring.

In the wake of Cl0p's MOVEit rampage, Progress Software is sending file-transfer customers scrambling again — this time to patch a critical bug that is easily exploitable with a specially crafted HTTPS POST request.

Cybersecurity's constant stream of shiny new things shouldn't distract managers from their focus on the people they're protecting.

Images purporting to be of the Armenia and Azerbaijan conflict were malware downloaders in disguise.