Security Bulletin

Disconnects between IT departments and executive boards drive “alarming” cybersecurity trends.

The criminal hackers are behind at least 30 cybercrime scams, including malware, phishing and cryptocurrency fraud.

Company urges organizations using self-hosting GitLab instances to apply updates for CVE-2024-45409 as soon as possible.

Inc ransomware — one of the most popular among cybercriminals today — meets healthcare, the industry sector most targeted by RaaS.

US ports rely on cranes manufactured by a Chinese state-owned company, many with unmonitored cellular connections, causing cybersecurity concerns.

Our reader "RoseSecurity" forwarded received the following malicious email:

The tactics used by Vanilla Tempest such as lateral movement via RDP are not novel – but attacks on healthcare by yet another ransomware strain complicates the picture.

The first patch lets threat actors with low-level credentials still exploit the vulnerability, while the second fully resolves the flaw.

As organizations invest in AI copilots, we ask: what features make them truly impactful?