Security Bulletin

Regulators are ready to enforce new state data privacy laws. Here's how experts say organizations can stay compliant and avoid penalties.

The deal, expected to close this quarter, will give Tenable One Exposure Management much-needed integration with over 100 third-party security tools and platforms.

The performance of DeepSeek models has made a clear impact, but are these models safe and secure? We use algorithmic AI vulnerability testing to find out.

Nine application security toolmakers band together to fork the popular Semgrep code-scanning project, touching off a controversy over access to features and fairness.

Escalating ransomware attacks against the financial sector have prompted House Financial Services Committee members Zach Nunn, R-Iowa, and Josh Gottheimer, D-N.J., to introduce new legislation that seeks to bolster public and private sector...

North Dakota-based TV station Valley News Live had more than 1.8 million files from its job portal leaked due to a misconfigured Amazon AWS S3 storage bucket, according to Cybernews.

TechCrunch reports that New Jersey-based assistive technology firm AngelSense was disclosed by cybersecurity firm UpGuard to have had its users' personally identifiable information and precise location details exposed online as a result of an...

Japanese graphics tablet manufacturer Wacom has disclosed the potential compromise of its customers' personal and credit card information following a breach of its online store that may have happened from Nov. 28, 2024 to Jan. 8, 2025, The Register...

New York Blood Center Enterprises, one of the leading independent blood centers across the U.S., had its blood drives and donation center activities deferred following a ransomware attack, which has not yet been claimed by any known threat operation...

BleepingComputer reports that threat actors could covertly hijack devices through the new multi-stage Browser Syncjacking attack that involves a trojanized Chrome extension.

Illicit use of Google's generative artificial intelligence chatbot Gemini has been conducted by more than 57 state-backed advanced persistent threat groups across 20 countries, according to The Hacker News.

The Cyber Trust Mark has the potential to change how we define and measure security at the endpoint level. But potential isn't enough.