Security Bulletin

Such draft for the updated NCIRP, which was developed in collaboration with more than 150 cybersecurity experts, also designates government agencies for each tier of response, with asset response to be spearheaded by CISA and the Department of...

While such an intrusion was reported by Namibian news outlets to have resulted in the compromise of more than 400,000 files, including information from high-profile government officials and clients, Telecom Namibia noted ongoing efforts to evaluate...

Aside from names and phone numbers, other information compromised as a result of the data breach may have also included birthdates, medical record numbers, details regarding health conditions, prescriptions, and treatments, and some Social Security...

Unauthorized access into the HSCs' network from Sep. 17 to 19 enabled the varying exposure of individuals' full names, birthdates, Social Security numbers, physical addresses, driver's license and government ID numbers, financial account details...

"When a NetScaler appliance is sized for handling a typical volume of authentication attempts, the high number of login attempts from large password spraying attacks can overwhelm the appliance, potentially leading to service and/or operational...

[This is a Guest Diary by James Levija, an ISC intern as part of the SANS.edu Bachelor's Degree in Applied Cybersecurity (BACS) program [1].]

This bulletin includes coordinated influence operation campaigns terminated on our platforms in Q4 2024. It was last updated on December 17, 2024.OctoberWe terminated 11…

Attackers can use tools like Shodan to hone-in on which water facilities are vulnerable, then take control of a facility.

Cybersecurity’s role in safeguarding executive leaders—both in the digital and physical realms—has never been more vital.

The cyberattack impacts at least 1.4 million patients, as tranches of highly sensitive personal, medical, and financial data fall into the hands of cyber crooks who have everything they need to carry out convincing social engineering and fraud...

Actions direct agencies to deploy specific security configurations to reduce cyber-risk.

Attacks involved the addition of a BeMob URL to the ad management system of the Monetag website monetization platform, also known as Omnatuor or Vane Viper, in an effort to enable TDS redirection to fake CAPTCHA pages hosted on various legitimate...