Security Bulletin

With an increase in cyber-physical attacks that can cause significant disruptions, financial fallout and safety concerns for victim organizations, IT and OT security teams cannot keep working in silos.

More than $1.67 billion worth of cryptocurrency has been exfiltrated across nearly 200 heists between January and March, which is not only 303% higher than the fourth quarter but also the highest amount of pilfered digital assets on record...

Minnesota's Lower Sioux Indian Community had operations of its healthcare facility, government center, and casino taken down by a cyberattack initially disclosed by officials on Friday and later claimed by the RansomHub ransomware-as-a-service...

Cybernews reports that most of the over 2.8 billion user records belonging to X, formerly Twitter which were purported by threat actor "ThinkingOne" to have been exfiltrated by a disgruntled employee were publicly available information.

Small businesses are the backbone of the U.S. economy, yet they face growing cyber threats—especially from nation-state actors like China—that jeopardize not only their survival but also national security, demanding urgent action at all levels of...

Sensitive data compromise could have been achieved through the exploitation of the recently patched Google Cloud Run privilege escalation flaw dubbed "ImageRunner," according to SecurityWeek.

Immediate patching has been urged by Cisco for a critical flaw impacting its Smart Licensing Utility, tracked as CVE-2024-20439, following the discovery of its attempted exploitation last month, reports BleepingComputer.

Mounting threats to the profitability of ransomware operations amid escalating law enforcement clampdowns, even by Russia, have prompted the Hunters International ransomware-as-a-service gang to alert affiliates regarding an ongoing rebrand to the...

More advanced obfuscation techniques have been adopted by a new Hijack Loader malware variant, the SHELBY malware, and the Emmenhtal Loader to facilitate clandestine compromise, according to The Hacker News.

Introducing version 3 of the Cisco Meraki Add-on for Splunk.       A Splunk technical add-on (TA) is a modular component that normalizes, validates, and enriches specific data sources before indexing in Splunk to enable proper searching, reporting...

Cisco is the sole supplier of network services to Mobile World Congress, expanding into security and observability, with Splunk.