Security Bulletin

Numerous servers belonging to Kurita America have been compromised with ransomware beginning Nov. 29, resulting in the exfiltration of data belonging to its customers, employees, and business partners, according to a statement from the company, which...

Attackers were also able to exfiltrate and encrypt certain files as a result of the systems breach, said Artivion in a filing with the Securities and Exchange Commission, which noted that efforts to recover systems that have been shut down following...

Banking trojan gives attackers access to corporate credentials, apps, and data when employees run remote access sessions on their Androids.

Today, we face a formidable challenge: what was once a tool intended for seamless interaction has now become fertile ground for cyber threats and malicious actors.

Microsoft today released patches for 71 vulnerabilities. 16 of these vulnerabilities are considered critical. One vulnerability (CVE-2024-49138) has already been exploited, and details were made public before today's patch release.

Because the streaming service website offers no content restrictions, attackers are able to hijack and manipulate live streams.

The Nemesis and ShinyHunters attackers scanned millions of IP addresses to find exploitable cloud-based flaws, though their operation ironically was discovered due to a cloud misconfiguration of their own doing.

Discover Cisco's New Hire Learning Plan from the Cisco Black Belt Academy, empowering new talent with essential skills and knowledge for success through modular, interactive training and expert support. Join us in shaping future leaders.

The software supply chain is a growing target, and organizations need to take special care to safeguard it.

What links a Spanish pilgrimage path, Cisco, and nearly $55K? Join Solutions Engineer Leader Keith R. on his Camino de Santiago journey to find out.

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low Attack Complexity Vendor: Schneider Electric Equipment: EcoStruxure Foxboro DCS Core Control Services Vulnerabilities: Out-of-bounds Write, Improper Validation of Array Index, Improper Input...

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.3 ATTENTION: Low Attack Complexity Vendor: Schneider Electric Equipment: FoxRTU Station Vulnerability: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') 2. RISK EVALUATION...