Security Bulletin

Google, Cloudflare, and Amazon Web Services were able to avert record-breaking layer 7 distributed denial-of-service attacks leveraging the new HTTP/2 Rapid Reset technique that peaked at 398 million, 201 million, and 155 million requests per second...

CyberScoop reports that suspected Israel-linked hacking group Predatory Sparrow has reemerged after an almost year-long hiatus amid the ongoing conflict between Israel and the Palestinian military group Hamas.

Vulnerable Atlassian Confluence Data Center and Server instances have been targeted by Chinese state-backed threat operation Storm-0062, also known as DarkShadow and Oro0lxy, in ongoing attacks exploiting a zero-day flaw, tracked as CVE-2023-22515...

Numerous biomedical, IT, and manufacturing entities in the U.S., Taiwan, Vietnam, and an unspecified island in the Pacific have been subjected to cyberespionage attacks by the newly discovered state-sponsored threat operation Grayling from February...

The Cisco Black Belt Partner Listening Program is a comprehensive initiative designed to foster a deeper understanding of partner needs and preferences within the dynamic technology industry. It represents a holistic approach that recognizes the...

Cisco's $28 billion purchase of Splunk was the biggest story, but there were other big security acquisitions and investments during a richer-than-expected quarter.

CISA flags use-after-free bug now being exploited in the wild.

The Israeli-Hamas war will most assuredly impact businesses when it comes to ramped-up cyberattacks. Experts say that Israel's considerable collection of cybersecurity vendors be a major asset on the cyber-front.

The best incident-response plans cover contingencies and are fine-tuned in stress tests to ensure collaboration, remediation, and recovery efforts align.

The novel technique helps hide the cybercriminal campaign's efforts to steal credit card information from visitors to major websites, and it represents an evolution for Magecart.

An SEO poisoning campaign is spreading the RecordBreaker/Raccoon Stealer and LummaC2 infostealers by attempting to confound software certificate checks.

The latest NIST Cybersecurity Framework draft highlights four major themes that organizations should pay attention to for managing risk.