Security Bulletin

Nearly three quarters of respondents said attacks on their healthcare organizations were more sophisticated than previous years.

The China state-sponsored espionage group compromises IT and cloud companies to attack customers.

The nation-state threat group has been breaching providers of remote management tools, identity management providers, and other IT companies to access networks of targeted entities, according to Microsoft.

The new cloud security startup uses AI to scan cloud applications and systems for issues before they are deployed.

The chipmakers patched bugs, mostly critical and high severity, that affect everything from smartphones to TVs to artificial intelligence platforms.

Banking organizations argue the rule will create an undue burden and goes against congressional intent.

At least seven typosquatting packages infiltrate the Go ecosystem.

The Iran-linked nation-state group made its debut with a stealthy, sophisticated, and laser-focused cyber-espionage attack on targets in UAE.

Ever hit an API rate limit unexpectedly? Or struggled to track which integrations are consuming the most API calls? We know that feeling—API troubleshooting can be frustrating when there’s little visibility into what’s happening behind the scenes...

The letters mimic typical ransom notes and threaten to delete or leak compromised data if payments aren't made, though none of the organizations that received them had active ransomware attacks.

Here are four ways security teams can build OSINT-aware strategies.