Security Bulletin

AI has accelerated text and voice-based scams – here’s how security teams can protect identities.

Today, I noticed increased scans for the VMWare Hyprid Cloud Extension (HCX) "sessions" endpoint. These endpoints are sometimes associated with exploit attempts for various VMWare vulnerabilities to determine if the system is running the extensions...

The executives will be investigated under Spain’s “discovery and disclosure of secrets” law.

The flaw compromises Perforce’s core authentication protocol.

The package impersonated popular Python libraries such as python-utils and utils.

Investment scams were the most financially damaging, accounting for $5.7 billion in losses.

Next-gen SOAR platforms outpace legacy solutions by offering AI-driven automation, no-code workflows, and seamless integrations, enabling faster, smarter, and more scalable security operations.

To truly become indispensable in the boardroom, CISOs need to meet the dual demands of defending against sophisticated adversaries while leading resilience strategies.

A US congressional committee has urged Americans to stop using wireless routers made by TP-Link.

Discontinuing support would enable CISA to prioritize "mission critical areas," said a spokesperson.

Summary Note: This joint Cybersecurity Advisory is part of an ongoing #StopRansomware effort to publish advisories for network defenders detailing various ransomware variants and ransomware threat actors. These #StopRansomware advisories include...

Today, CISA—in partnership with the Federal Bureau of Investigation (FBI) and Multi-State Information Sharing and Analysis Center (MS-ISAC)—released joint Cybersecurity Advisory, #StopRansomware: Medusa Ransomware. This advisory provides tactics...