Security Bulletin

It’s more challenging for organizations to get cybersecurity insurance, and when they do manage to get insured the premiums are steep. It also turns out that not all policies cover ransomware, the leading cause of cyber insurance claims.

Several updates have been introduced to the Atomic Stealer macOS information-stealing malware, also known as AMOS, including the integration of payload encryption to better evade security software detection, The Hacker News reports.

BleepingComputer reports that more than 6,700 WordPress sites leveraging Popup Builder plugin vulnerable to the cross-site scripting bug, tracked as CVE-2023-6000, have been compromised in a new Balada Injector campaign that commenced last month.

The U.S., Australia, India, and the UK are having their government institutions subjected to new attacks by Chinese advanced persistent threat operation Volt Typhoon leveraging a pair of critical vulnerabilities in end-of-life Cisco small business...

Efforts to remove the four-year degree requirement for certain federal cybersecurity contracting positions are being advanced by National Cyber Director Harry Coker and the Office of Management and Budget in a bid to strengthen the cybersecurity...

Ongoing intrusions leveraging an already patched critical privilege escalation flaw impacting Microsoft SharePoint, tracked as CVE-2023-29357, have been flagged by the Cybersecurity and Infrastructure Security Agency, which has added the issue to its...

CyberScoop reports that Russian state-sponsored threat operation Sandworm was noted by Forescout to not have been behind two separate hacking campaigns against Denmark's critical infrastructure last year, which were attributed to the hacking group by...

Security remains a top priority for today’s organizations. With expanded Managed Security offers, Cisco can help its Provider Partners create differentiation in the marketplace, grow their business, and better meet their customers’ needs.

Total recovery from a Russian ransomware attack in October at Kansas' court system was noted to be imminent by state Supreme Court Chief Justice Marla Luckert following this week's restoration of its case management system and free public portal for...

Hong Kong-based athleisure wear retailer Halara has commenced a probe into a data breach following the emergence of claims regarding the theft and leak of information from more than a million of its customers, reports BleepingComputer.

Wired reports that more than 4 million sensitive school records, including thousands of U.S. schools' active shooter emergency plans and other emergency planning documents, have been exposed due to internet-exposed web buckets owned by school...

Are historical budget constraints limiting your cybersecurity program? Don't let old saws hold you back. It's time to revisit your budget with revolutionary future needs front of mind.