Security Bulletin

The meeting, which was called for by the United States and 15 other nations, sought to address the proliferation and misuse of government and mercenary spyware.

The company, which operates equipment in each U.S. state and serves over 700 networks, has faced criticism for vulnerabilities in its firmware flagged by the Cybersecurity and Infrastructure Security Agency.

Aside from the possible compromise of names, birthdates, genders, home addresses, phone numbers, and health card digits, TDSB students enrolled beginning Sep. 2017 may have also had their parent, guardian, or caregiver contact details and certain...

"This compromise was quickly contained and our technology environment is currently considered to be free of known malicious activity as confirmed by our third-party security experts," said a Conduent spokesperson, who did not confirm whether the...

On March 31, 2025 the new PCI 4.0 requirements go into effect. These requirements were future dated to enable organizations the ability to prepare for the adoption.

Cisco’s User Protection Suite now includes Identity Services Engine (ISE), enabling organizations to achieve zero trust for the workplace.

Note: The CVEs in this advisory are unrelated to vulnerabilities (CVE-2025-0282 and CVE-2025-0283) in Ivanti’s Connect Secure, Policy Secure and ZTA Gateways. For more information on mitigating CVE -2025-0282 and CVE-2025-0283, see Ivanti Releases...

CISA, in partnership with the Federal Bureau of Investigation (FBI), released Threat Actors Chained Vulnerabilities in Ivanti Cloud Service Applications. This advisory was crafted in response to exploitation of vulnerabilities— CVE-2024-8963, an...

Despite lagging in technology adoption, African and Middle Eastern organizations are catching up, driven by smartphone acceptance and national identity systems.

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

The reversal removes certain reporting requirements for developers of powerful foundation models.

Virginia man faces up 10 years in prison for two counts of willful retention and transmission of classified information.