Security Bulletin

Increasingly prevalent cyberattacks against healthcare organizations across the U.S. have prompted the Cybersecurity and Infrastructure Security Agency and the Department of Health and Human Services to unveil a new healthcare cybersecurity toolkit...

U.S. federal agencies have experienced a significant reduction in known exploited security flaws across the networks since the release of the Cybersecurity and Infrastructure Security Agency's Known Exploited Vulnerabilities catalog more than two...

Malicious Android apps on Google Play that included adware have been downloaded more than two million times, reports BleepingComputer.

BleepingComputer reports that French government agencies, universities, businesses, research institutes, and think tanks had their networks compromised by Russian state-sponsored threat operation APT28, also known as Fancy Bear and Strontium, in...

New IMAPLoader malware attacks deployed by Iranian threat operation New watering hole attacks have been launched by Iranian state-sponsored advanced persistent threat operation Tortoiseshell, also known as TA456, Imperial Kitten, Yellow Liderc, and...

HTTP distributed denial-of-service attacks increased by 65% between the second and third quarters of 2023, while layer 3/4 DDoS attacks targeted at compromising infrastructure resources have risen by 14% over the same period, reports SiliconAngle.

More than a million Windows and Linux systems have been compromised by the sophisticated StripedFly malware framework between 2017 and 2022, according to BleepingComputer.

Try these tricks for devising an education program that gets employees invested — and stays with them after the training is over.

CrowdStrike is moving deeper into application security with its agreement to acquire Bionic, provider of ASPM technology that proactively scans software in production for vulnerabilities.

The "iLeakage" attack affects all recent iPhone, iPad, and MacBook models, allowing attackers to peruse your Gmail inbox, steal your Instagram password, or scrutinize your YouTube history.

The current $100B problem today for retailers? Theft & fraud, see how Cisco can help.

In addition to Google's new bug bounty program, announcements this week around generative AI also include an upcoming Biden administration executive order, as well as studies by OpenAI and the United Nations.