Security Bulletin

A hidden feature could enable remote command execution using hard-coded credentials on home routers.

Attackers have been using the Windows MSHTML Platform spoofing vulnerability in conjunction with another zero-day flaw.

The sanctions are unlikely to affect the growing network of criminals who lure victims into working for cybercrime sweat shops around the world.

A conference connecting defense industry professionals in the U.S. and Taiwan has come under attack from malware threat actors.

Three days after Ivanti published an advisory about the high-severity vulnerability CVE-2024-8190, threat actors began to abuse the flaw.

Security pros say U.S. companies should stay vigilant as RansomHub remains active worldwide.

Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card.

This year’s theme is Forward as One and it fits perfectly with our current landscape. It underscores the necessity of moving forward together—Cisco and our partners—as a unified force. To evolve and succeed in this ever-changing market, we must be...

While the 2024 election may see various cyber threats, existing security measures and coordination across all levels of government aim to minimize their impact.

SecurityWeek reports that Apple has sought the dismissal of a lawsuit it filed against Israeli spyware maker NSO Group three years ago amid recent developments that could threaten the exposure of threat intelligence and other sensitive data required...

Restoration of the servers has allowed the resumption of business with third-party suppliers and dealers, according to the major Japanese motor vehicle manufacturer's European arm, which confirmed the temporary isolation of all its servers but did...

Attackers were able to compromise 23andMe over five months beginning April 2023, enabling access to 5.5 million DNA Relatives profiles and details from 1.4 million users of the Family Tree feature, said the company in a disclosure in October.