Security Bulletin

Discover the transformative power of AI as it helps federal operations connect agencies like never before.

Universities have transformed into smart campuses, offering a dynamic living lab environment for research and technology innovation to tackle global challenges such as sustainability.

SVP of US Commercial Sales, Tim Coogan, explores circular business practices, emphasizing sustainability across the product lifecycle.

Today, CISA published guidance on How Software Manufacturers Can Shield Web Management Interfaces From Malicious Cyber Activity as a part of a new Secure by Design (SbD) Alert series. This SbD Alert urges software manufacturers to proactively prevent...

Without building security into our software products from the start, cyberattacks will continue unabated.

[This is a Guest Diary by Alex Rodriguez, an ISC intern as part of the SANS.edu BACS program]

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

Dropping the ball on chemical security has precipitated "a national security gap too great to ignore," CISA warns.

Anyscale has dismissed the vulnerabilities as non-issues, according to researchers who reported the bugs to the company.

Novel products aimed at strengthening application security among software developers have been launched by Veracode, according to SiliconAngle.

Vulnerable SSH servers could be compromised to secure private RSA host keys through a new passive attack method that involves the observation of computational faults during the signing process that exposes the private keys, The Hacker News reports.

SecurityWeek reports that threat actors could leverage critical vulnerabilities impacting open-source file-sharing software ownCloud to facilitate sensitive data exposure and authentication and validation compromise.