Security Bulletin

Advanced persistent threat operation Sandman and Chinese threat cluster Storm-0866, also known as Red Dev 40, had significantly similar attack techniques as evidenced by the coexistence of their LuaDream and KEYPLUG malware, respectively, in the same...

Nearly two dozen critical infrastructure organizations across the U.S., including an oil and gas pipeline and a Hawaii-based water utility, had their computer systems infiltrated by Chinese state-sponsored threat operations during the past 12 months...

Apache releases drop-in replacement and upgrade for critical security flaw that is similar to vulnerability that led to 2017 Equifax breach.

Microsoft had a rather light patch Tuesday for us today. Today's set includes 4 critical, 30 important, and one moderate vulnerability. In addition, Microsoft included five Chromium patches that are part of Edge. Only one vulnerability was...

It's important for Congress to strengthen protections for AI and set guardrails to make sure it isn't used maliciously.

Learn how to accelerate roadways digitization to capture new opportunities while protecting your infrastructure from cyber threats.

Attackers can inject and execute arbitrary PHP code using a flaw in Backup Migration, which has been downloaded more than 90K times.

In addition to Log4j, the North Korean threat group’s latest campaign also involves three previously unknown Dlang-based malware variants.

Webex will be at NRF’24—and we’ll be powering our in-booth coffee bar experience with mobile ordering by Webex Connect. Discover how Webex Connect can power seamless end-to-end customer experiences with the tap of a finger.

Hear how Cisco worked with OU Health to fundamentally transform the management of critical infrastructure and administer the enterprise and clinical systems used to support healthcare professionals and patients.

A decade after Target suffered a major security breach, are we still disregarding the gaping holes in our cyber fortifications?

The UN is helping Ministry of Interior staff implement cybersecurity best practices, as talks continue about scheduling a parliamentary election in the coming months.