Security Bulletin

Individuals concerned about the privacy of their communications should consider using encrypted messaging apps and encrypted voice communications, CISA and FBI officials say.

As CTEM practices become increasingly widespread, security vendors have rushed to position themselves as exposure management providers — but a closer examination reveals that many of them have adopted a partial approach.

Parasitic advanced persistent threat Secret Blizzard accesses another APT's infrastructure and steals what it has stolen from South Asian government and military targets.

The vulnerability affects certain versions of the Veeam Service Provider Console that can only be fixed by updating with the latest patch.

In patching a 9.9 bug and a high-severity flaw, Veeam said the only available remedy is to apply the patches.

Aside from creating a Cybersecurity Emergency Mechanism that supports cyberattack preparation, identification, and recovery, the first law also institutionalizes a European Cybersecurity Alert System, a network of artificial intelligence-powered...

Water and wastewater treatment facilities across the state have been urged to avail of the assessments, which leverage National Institute of Standards and Technology, Center for Internet Security, and National Science Foundation's Trusted CI...

Virginia-based Gravy Analytics and its subsidiary Venntel have been accused by the FTC of leveraging consumer location details without consent, as well as peddling health information, religious views, political activities, and other data to others.

The notorious spyware from Israel's NSO Group has been found targeting journalists, government officials, and corporate executives in multiple variants discovered in a threat scan of 3,500 mobile phones.

Such a rule, which is open for public comments until March 2025, would not only mandate explicit customer authorization for the sale of data but also strengthen protections against the exploitation of collected data.