Security Bulletin

Attack by Black Basta sent the Ascension system reeling for several days, forcing medical staffs to reading paper charts.

Cybernews reports that Paris-based software firm Kaspr — which provides a paid Chrome browser extension allowing the gathering of LinkedIn users' professional contact information — has been ordered by France's National Commission on Informatics and...

Alleged NetWalker ransomware affiliate Daniel Christian Hulea has been subjected to a two-decade prison sentence for leveraging the ransomware to extort $21.5 million worth of Bitcoin alongside a co-conspirator, SecurityWeek reports

The number of Non-Human Identities (NHIs) in many organizations has exploded. Key trends, drivers, and market landscape in this fast-developing area are explored.

Hotfixes have been revealed for three vulnerabilities affecting Sophos Firewall versions 21.0 GA and older, two of which were of critical severity, reports The Hacker News.

SecurityWeek reports that Rockwell Automation has issued fixes for a trio of critical flaws impacting Allen-Bradley PowerMonitor 1000 instances, which could be leveraged to infiltrate and disrupt industrial systems.

Major U.S. healthcare system Ascension Health had data from more than 5.599 million patients and employees compromised in a cyberattack earlier this year, which was attributed to the Black Basta ransomware-as-a-service operation, Cybernews reports

Organizations in Brazil, Peru, France, Spain, Switzerland, Croatia, Namibia, India, Turkey, Mongolia, Indonesia, and the United Arab Emirates have been targeted in attacks targeting Fortinet FortiClient EMS instances affected by the critical SQL...

BleepingComputer reports that high-performance JavaScript bundler Rspack and customizable Vue.js UI library Vant had a trio of widely-used npm packages discovered by Sonatype and Socket researchers to have been breached to facilitate the distribution...

Malicious activity involving the new FlowerStorm phishing-as-a-service platform aimed at Microsoft 365 credentials has escalated following a technical issue that prompted the "partial" infrastructure collapse of the Rockstar2FA PhaaS platform last...

With the increased frequency of board reporting, CISOs need to ensure their interactions are brief, productive, and valuable.

Since October 2023, cyberattacks among countries in the Middle East have persisted, fueled by the conflict between Israel and Hamas, reeling in others on a global scale.