Security Bulletin

Leveraging a validated architecture for Utility Substation Automation.

Start-up funding for new Israeli cybersecurity companies has plummeted — and market-watchers expect that to continue throughout 2024.

An emerging threat actor, Water Curupira, is wielding a new, sophisticated loader in a series of thread-jacking phishing campaigns that precede ransomware.

If you happen to be at the NRF’24 in NYC on January 14-16th, please come by the Cisco booth 5639 and meet with us to learn more.

Security pros noted that the first Patch Tuesday of 2024 was the second consecutive release by Microsoft with no zero-days.

The Nigerian national, who was living in the US, also must pay over $1 million in restitution.

Are Ukrainian cyberattacks against Iranian targets a blip or the beginning of a new trend?

Organizations hit by the Royal and Akira ransomware gangs have been approached by fake researchers claiming they can access and delete stolen files.

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2023-29357 Microsoft SharePoint Server Privilege Escalation Vulnerability These types of vulnerabilities are frequent...

Ivanti has released a security update to address an authentication bypass vulnerability (CVE-2023-46805) and a command injection vulnerability (CVE-2024-21887) in all supported versions (9.x and 22.x) of Connect Secure and Policy Secure gateways. A...

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-21887 Ivanti Connect Secure and Policy Secure Command Injection Vulnerability CVE-2023-46805 Ivanti Connect...

Here are four ways to get going implementing zero-trust.