For individuals

An internal error led to public disclosure of reams of sensitive data that could be co-opted for follow-on cyberattacks.

Scattered Spider and other phishers and hacking groups are using rentable subdomains from dynamic DNS providers to obfuscate their activity and impersonate well-known brands.

Specialization among threat groups poses challenges for defenders, who now must distinguish between different actors responsible for different facets of an attack.

While most of the victims are based overseas, security pros say it’s plausible the group will also target North America.

A well-documented cybersecurity incident response program (CSIRP) provides the transparency needed for informed decision-making, protecting the organization in a constantly changing threat environment.

Arctic Wolf has unveiled its Incident360 Retainer, a new cybersecurity service that merges proactive incident readiness with complete incident response support, reports SecurityBrief Australia.

GitLab has launched version 18 of its platform, embedding AI-native features and expanding capabilities across DevOps, security, and compliance, SecurityBrief Australia reports.

Cybersecurity Dive reports that the U.S. Department of Commerce has been sought by a group of over a dozen Republican lawmakers to prohibit the use of TP-Link routers across the country over its association with the Chinese government, which threatens U.S. national security.

Federal Trade Commission Chair Andrew Ferguson said that artificial intelligence systems will only be regulated upon the emergence of significant issues in an effort to ensure continued innovation, which is in stark contrast to former FTC Chair Lina Khan's combative stance on the technology, The Record reports.

In a dynamic webcast, Mike Shema and Clinton Herget explore the complex landscape of application security in financial services, highlighting the critical need for innovative approaches that balance technological diversity, regulatory compliance, and developer experience.