Security Bulletin

An upgraded cybercrime tool is designed to make targeted ransomware attacks as easy and effective as possible, with features like EDR-spotting and DNS-based C2 communication.

The bug allowed an attacker an easy way to compromise full suite of developer tools in Oracle Cloud Infrastructure.

A group of female cybersecurity pioneers will share what they've learned about navigating a field dominated by men, in order to help other women empower themselves and pursue successful cybersecurity careers.

A threat actor with likely links to the Abyss ransomware group is leveraging an apparent zero-day vulnerability to deploy the "Overstep" backdoor on fully up-to-date appliances.

There are fewer things more important to global trade than a 20-foot rectangular box made of Corten steel. As Turkey’s most important port demonstrates, a pervasive reliable wireless network might be one of them

IT leaders from across the country gathered at Cisco Live US 2025 to explore the latest innovations, strategies, and best practices in technology. The event featured tailored sessions and keynotes designed to address the unique challenges and...

By tying security investments to measurable outcomes — like reduced breach likelihood and financial impact — CISOs can align internal stakeholders and justify spending based on real-world risk.

A few months ago, I wrote a diary about online services used to exfiltrate data[ 1]. In this diary, I mentioned some well-known services. One of them was catbox.moe[ 2]. Recently, I found a sample that was trying to download some payload from this...

This blog explores why healthcare is so attractive for cybercriminals and outlines five actions to reset how we approach security in the sector with a long-term comprehensive vision enabling organizations to build long-term resilience.

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

Using more than 600 domains, attackers entice Chinese-speaking victims to download a vulnerable Telegram app that is nearly undetectable on older versions of Android.