Security Bulletin

Customers were the first to notice the disruption on the distributor's website when they couldn't place orders online.

Critical security vulnerabilities affect different parts of the Model Context Protocol (MCP) ecosystem, which many organizations are rapidly adopting in order to integrate AI models with external data sources.

The UK's National Crime Agency arrested four people, who some experts believe are connected to the notorious cybercriminal collective known as Scattered Spider.

Now it's time to build systems that attackers can't reroute with a phone call.

Cisco Catalyst 8300 earns NetSecOPEN certification for exceptional real-world NGFW and SD-WAN performance under modern enterprise conditions.

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

Stories about Chinese APTs attacking the US and Canada are plentiful. In a turnabout, researchers found what they believe is a North American entity attacking a Chinese entity, thanks to a mysterious issue in Microsoft Exchange.

[This is a Guest Diary by Sihui Neo, an ISC intern as part of the SANS.edu BACS program]

For browsers, exploitation is out — and getting users to compromise their own systems is in. Improved browser security has forced attackers to adapt their tactics, and they've accepted the challenge.

In the heart of Australia’s capital, the Canberra Institute of Technology (CIT) is setting an of how education can evolve to meet the challenges of today while preparing students for the opportunities of tomorrow. Through a bold commitment to digital...

A container escape flaw involving the NVIDIA Container Toolkit could have enabled a threat actor to access AI datasets across tenants.

At Cisco Live, Wyebot’s AI-powered sensors gave the Cisco team full visibility into attendee Wi-Fi experience, helping ensure flawless connectivity in one of the most demanding wireless environments.