Security Bulletin

ConnectWise issued a patch to stave off attacks on ScreenConnect customers, but the company's disclosures don't explain what the vulnerability is and when it was first exploited.

SC Media opens nominations for its 12th annual Women in IT Security program, spotlighting leadership, resilience, and impact across the cybersecurity industry.

The US can't afford to wait for political consensus to catch up to technological change.

Discover how the CISA and DoD Zero Trust frameworks differ, and gain key insights to navigate the complexities of implementing Zero Trust across civilian and defense sectors.

StateScoop reports that increasingly prevalent cybersecurity threats against Texas have prompted Gov. Greg Abbott to approve legislation establishing a new state Cyber Command at the University of Texas at San Antonio.

Congress has been urged by Federal Trade Commission Chair Andrew Ferguson to bolster its version of the Children's Online Privacy Protection Rule as the agency intensifies its clampdown on erring websites and service providers under its recently...

Valid account credentials without multi-factor authentication continued to be the dominant initial access vector in cyberattacks last quarter, accounting for 56% of all cybersecurity incidents during the first three months of 2025, Infosecurity...

Threat actors could remotely compromise almost 35,000 internet-exposed solar power systems around the world, reports Cybersecurity Dive.

SecurityWeek reports that the industrial sector has been primarily infected with the Win32.Worm.Ramnit, Trojan.scar/shyape, Trojan.lokibot/stealer, and Win32.Worm.Sohanad malware between October 2024 and March 2025.

Nearly 15% of all global distributed denial-of-service traffic has been directed at the U.S., making it the third most DDoS attack-targeted country behind only India and China, Hackread reports.

Ukraine's Military Intelligence Service, or HUR, has taken credit for compromising major Russian aerospace and defense firm Tupolev in an attack, which purportedly led to the theft of over 4.4 GB of classified data, according to the Kyiv Post.