Security Bulletin

Hundreds of organizations — including Rite Aid, Frontier Communications, Christie's, and Planned Parenthood of Montana — have already been compromised by the RansomHub ransomware-as-a-service operation less than a year after its emergence after...

Malicious job offers purporting to be from widely known companies have been leveraged by threat actors to facilitate the distribution of cryptocurrency-stealing malware, reports Cybernews.

Rhode Island had some files from its Deloitte-managed public benefits computer system RIBridges leaked following a Brain Cipher ransomware attack earlier this month, according to The Associated Press.

AI tools will enable significant productivity and efficiency benefits for organizations in the coming year, but they also will exacerbate privacy, governance, and security risks.

While most of us are preparing the switch to a new year (If it&#x27s already the case for you: Happy New Year!), Attackers never stop and implement always new tricks to defeat our security controls. For a long time now, we have been flooded by...

In what's being called a 'major cybersecurity incident,' Beijing-backed adversaries broke into cyber vendor BeyondTrust to access US Department of Treasury workstations and steal unclassified data, according to a letter sent to lawmakers.

Stolen Cyberhaven employee credentials used to steal access tokens and business data from users of Facebook ads.

Nine U.S. telecommunications firms were confirmed by U.S. officials to have been compromised by Chinese state-backed threat group Salt Typhoon as part of its sweeping cyberespionage operation, with the newly-added unnamed entity's networks breached...

More than 15,000 internet-exposed Four-Faith F3x24 and F3x36 routers could potentially be compromised in ongoing intrusions exploiting the high-severity operating system command injection flaw, tracked as CVE-2024-12856, according to The Hacker News.

Hackread reports that Cisco had another 4.84 GB of its 4.5 TB dataset compromised from an October breach of an unsecured DevHub portal exposed on Christmas Eve by IntelBroker, who previously leaked 2.9 GB of files from the same trove.

Security Affairs reports that numerous Italian websites — including those of the country's Ministry of Foreign Affairs, the Turin Transport Group, and the Linate and Malpensa airports — have been compromised as part of a distributed denial-of-service...