Security Bulletin

A series of cyberattacks have struck multiple major British retailers in recent weeks, and a ransomware gang has reportedly claimed responsibility.

According to the New York Department of Financial Services, finance companies operating in New York — even if not based there — must implement a variety of protections against unauthorized access to IT systems.

Two different federal Justice Department cybersecurity cases announced May 1 underscored the complex challenges the agency faces in policing cybersecurity issues

Software teams need to follow security best practices to eliminate the leak of secrets, as threat actors increase their scanning for configuration and repository files.

While law enforcement has identified and arrested several alleged members, the notorious threat group continues to wreak havoc.

Security leaders are increasingly challenged to adopt AI for protection while bracing for the new risks it introduces, as adversaries weaponize the same technology with alarming speed and precision, SiliconAngle reports.

A 25-year-old California man, Ryan Kramer, has pleaded guilty to infiltrating Disneys internal communications and stealing over 1.1 terabytes of confidential data by deploying malware disguised as an AI image generation tool, BleepingComputer reports...

A possible cyberattack on Polands state registry systems on Wednesday temporarily disrupted access to key digital government services, including identity verification and tax reporting platforms, according to a report by The Record, a news site by...

The Record, a news site by cybersecurity firm Recorded Future, reports that Apple has alerted users in 100 countries that their devices were targeted by sophisticated spyware, part of a global wave of mercenary surveillance attacks.

Gutting CISA won't just lose us a partner. It will lose us momentum. And in this game, that's when things break.

A cyber incident has severely disrupted digital infrastructure at Bartlesville Public Schools in Oklahoma, halting state testing and prompting an urgent investigation, the Bartlesville Examiner-Enterprise reports.

Pro-Russian hacktivist group NoName057(16) has been linked to a wave of distributed denial-of-service (DDoS) attacks targeting multiple public and private organizations across the Netherlands, BleepingComputer reports.