Security Bulletin

More widespread of the addressed bugs was a logic issue, tracked as CVE-2024-44204, which could prompt Apple's new VoiceOver feature to read credentials saved within the recently unveiled Passwords app.

Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card.

Investigation into the attack, which no ransomware operation has claimed yet, is still underway, according to Highline, which noted that student and staff device re-imaging and network password resets will commence next week.

Attackers were able to exfiltrate individuals' names, Social Security numbers, and other personal details as a result of the incident but there has been no evidence suggesting the misuse of impacted data, said UMG in a filing with the Office of the...

After shutting down its systems on September 20, MoneyGram issued an email update five days later stating that it has since restored most of its operations with the assistance of CrowdStrike and other third-party cybersecurity experts, as well as U.S...

CISOs must function as business leaders with tech skills, focus more on financial calculations, and have the ability to handle crisis communications.

The popular LiteSpeed Cache plug-in is vulnerable to unauthenticated privilege escalation via a dangerous XSS flaw.

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

Phishing attacks are become more prevalent as threat actors are arming themselves with potent new tools.

The collaboration with industry partners will improve collective AI defenses. Trusted contributors receive protected and anonymized data on real-world AI incidents.

The “BabyLockerKZ” variant has been in use by an unnamed threat actor since late 2023.

Creaky old identity-management systems can't keep up with today's cloud-based, remote, zero-trust workplaces. Here's how a modern IAM system prepares your organization for the future.