Security Bulletin

Hackers sent a convincing lure document, but after 20 years of similar attacks, the target organization was well prepared.

Since posting a diary about Vega-Lite [ 1], I have "played" with other queries that might be interesting and the first one that I wanted to explore since the DShield SIEM [ 2] capture and parse the iptables logs and store the Time-to-Live (TTL) for...

As the U.S. presidential elections near, foreign hackers are launching new campaigns against the candidates and their staffers.

Session hijacking is an emerging entry point for ransomware actors but few orgs invalidate open sessions after a malware infection.

By accessing the MSSQL, threat actors gain admin-level access to the application, allowing them to automate their attacks.

Thought to be Brazilian in origin, the remote access Trojan is the "perfect tool for a 21st-century James Bond."

Criminal actors are finding their niche in utilizing QR phishing codes, otherwise known as "quishing," to victimize unsuspecting tourists in Europe and beyond.

The 12-member group will compete at the first all-women's capture-the-flag competition this November at the Kunoichi Cyber Games in Tokyo.

Security pros say TeamTNT’s resurgence shows that attackers will always find new ways to attack the cloud.

Regulators fine AT&T $13 million for failing to protect customer information held by a third-party vendor, and extend consumer data protections to the cloud.

Despite security updates to protect data, 45% of total enterprise instances of the cloud-based IT management platform leaked PII, internal system details, and active credentials over the past year.

Five ransomware gangs dominated the landscape in 2024 – here’s how to keep them at bay.