Security Bulletin

Background check labels were given to most of the leaked data, which consists of full names, phone numbers, home and email addresses, employment details, social media accounts, family members, and criminal record history, a report by cybersecurity...

While INC Ransom has alleged exfiltrating patients' and donors' full names and addresses, as well as the former's medical reports and financial files and the latter's donation amounts for the past six years, some of which have already been exposed...

In a filing with the Office of the Maine Attorney General, OPPC disclosed that infiltration of its systems resulted in the exfiltration of individuals' names, residence details, Social Security numbers, diagnoses, medical record numbers, and...

Threat actor uses leveraging the Rockstar 2FA phishing-as-a-service and bypasses MFA.

With cybersecurity talent hard to come by and companies increasingly looking for guidance and best practices, virtual and fractional chief information security officers can make a lot of sense.

Aside from leveraging numerous notorious nuisance networks, VPNs, cloud hosting provider infrastructure, and other direct-path attack vectors, threat actors behind the coordinated DDoS campaign also exploited the DDoSia botnet to maximize intrusions.

While Microsoft has noted that leveraging the flaw — which was discovered by Microsoft employees Apoorv Wadhwa, Gautam Peri, and an anonymous researcher — could allow privilege escalation without authentication, additional details regarding its...

Malicious ads with time-limited offers and countdowns have been leveraged by threat actors to lure downloads of the predatory loan apps, which would seek unneeded permissions for SMS, contact, call record, phone storage, calendar, microphone, and...

Russian programmer Mikhail Pavlovich Matveev — who has been accused of being involved with the LockBit, Hive, and Babuk ransomware operations — has reportedly been apprehended and indicted by Russian authorities for developing data encrypting...

Alder Hey Children's Hospital got hit with a ransomware attack, while the nature of an incident at Wirral University Teaching Hospital remains undisclosed.

The playbooks that accompany your incident response plan provide efficiency and consistency in responses, help reduce downtime and dwell time, and can be a cost-saving and reputational-saving measure for your organization.

Microsoft is readying a new release of Windows in 2025 that will have significant security controls, such as more resilient drivers and a "self-defending" operating system kernel.