Security Bulletin

Palo Alto Networks' Unit 42 details how a threat actor is dodging detection with careful targeting and the use of Amazon's native email tools.

Amnesty International said Serbian police used an exploit chain in tandem with legitimate mobile extraction dongle from vendor Cellebrite in an attack that brings up questions around ethical technology development.

The $215 million acquisition will allow Jamf offer dynamic identity capabilities and device access in a single platform.

Fraudulent IT workers are looking for engineering and developer positions in the US and Japan, and this time it's not about espionage.

GenAI is transforming many aspects of security and risk management, from data security to third-party risk.

VMware ESX, VMware vSphere, VMware Cloud Foundation, or VMware Telco Cloud Platform are affected.

Media reports over the weekend suggested the Trump administration ordered US Cyber Command and CISA to draw down cyber activities targeting Russia.

The defense secretary’s gamble injects too much risk, and will cost us critical intelligence relationships with allies.

Lately, attackers have gotten more creative and aggressive in trying to find various credential files on exposed web servers. Our " First Seen" page each day shows many new versions of scans for secrets files like ".env".