Security Bulletin

While CVE-2023-40044 is critical, threat watchers hope it won't be another MOVEit for customers of Progress Software's file transfer technology.

Researchers found 164 domains connected to a single threat actor located in Tehran.

Come up with a clever caption, and our panel of experts will reward the winner with a $25 Amazon gift card.

Thousands of messages are being sent weekly in a campaign that uses links hosted on legitimate websites to evade natural language processing and URL-scanning email protections.

Combining robust decryption and orchestration of encrypted traffic with threat prevention is crucial to staying ahead of attackers.

The startup claims its private AI software is working on making decisions based on generalizing from examples.

Google, Fortanix, and other firms have aimed to train a cadre of Rust developers, betting that the additional cost will be offset by security savings.

The Lazarus Group's "LightlessCan" malware executes multiple native Windows commands within the RAT itself, making detection significantly harder, security vendor says.

The royal takedown was a brief but effective PR stunt for Russia's most notorious hacktivist group.