Security Bulletin

The risks of data supply chain poisoning and malicious data tampering are addressed in the guidance.

CISA believes the attacks on Commvault Azure environments may be part of a larger campaign to target SaaS vendors.

  The Cisco Customer Achievement Awards recognize outstanding Cisco customers who are achieving exceptional results through the innovative use of Cisco solutions. Now in its inaugural year under a revitalized brand and enhanced scope, the program...

Encryption, collaboration, and AI can help organizations build up essential protection against ransomware.

By automating security policies and threat detection while coaching users on data protection, companies will be better able to take control of and protect their data.

The key to navigating this new GenAI landscape is a balanced approach — one that fosters transparency, strengthens regulatory frameworks, and embraces privacy-enhancing technologies.

The Federal Communications Commission has moved to prohibit testing of electronic devices for sale in the U.S. by Chinese labs controlled or directed by firms on its "Covered List", with electronics for import to the U.S. being required to undergo...

Increasing concerns regarding the potentially significant impact of vulnerable artificial intelligence models on critical infrastructure have led the FBI, Cybersecurity and Infrastructure Security Agency, National Security Agency, and cybersecurity...

Mounting cybersecurity threats against U.S. critical infrastructure, compounded by conflicting rules, have prompted Sens. Gary Peters, D-Mich., and James Lankford, R-Okla., to reintroduce the Streamlining Federal Cybersecurity Regulations Act, which...

Active Directory users could be compromised with the new BadSuccessor attack technique, which involves the exploitation of a privilege escalation vulnerability within Windows Server 2025's delegated Managed Service Account feature that was made to...

Versa Networks' centralized management and orchestration platform Versa Concerto has been impacted by a trio of serious vulnerabilities, which could be leveraged for authentication evasion and arbitrary code execution, according to BleepingComputer.