Security Bulletin

Numerous nation-state and hacktivist threats have targeted Russia during the past year.

My Google skills let me down this morning, attempting to figure out which vulnerability is exactly being exploited by these "forgotuserpassword.action" scans. Maybe someone else can help me out here. Based on the scans, I do not believe this is a...

Petty scammers have figured out how to leverage a core function of DNS in order to maintain scalable, stealthy, pliable malicious infrastructure.

Learn more about Cisco's collaboration with HBCUs and the Student Freedom Initiative to bolster NIST compliance and ensure the longevity of HBCUs.

Laing O'Rourke used Cisco Secure Firewall and Identity Services Engine to deliver global, secure network access. Here's how it all happened.

Too many attacks are now focused on network infrastructure – and teams need the tools to help combat these new network-based threats.

Seventy-four percent of codebases had high-risk open source vulnerabilities last year, representing a significant increase over the 48% of those with exploited flaws, proof-of-concept exploits, and remote code execution issues in 2022.

Five million WordPress sites could be compromised due to an unauthenticated site-wide cross-site scripting flaw in the LiteSpeed Cache plugin.

Lurie Children's Hospital has been demanded by the Rhysida ransomware-as-a-service operation to provide more than $3.4 million worth of bitcoin.

Cencora, formerly AmerisourceBergen, had its IT systems compromised following a cyberattack.

The Atomic Stealer malware packs a punch delivering information-stealing malware, cryptomining payloads, and keylogger capabilities.

Attacks distributing the novel Xeno RAT trojan and updated Gh0st RAT variant dubbed "Nood RAT" have been underway.