Security Bulletin

Texas has alerted half a dozen companies — including Affinity Solutions, Fifty Technology, HubSpot Inc., LoopMe Limited, Spectrum Mailing Lists, and ZenLeads Inc. — to immediately register to the state's data broker registries to avoid daily fines of...

CNN reports that the U.S. Supreme Court has been sought by President-elect Donald Trump to delay the implementation of a ban on TikTok poised to be effective just a day prior to his inauguration on Jan. 20.

Hundreds of organizations — including Rite Aid, Frontier Communications, Christie's, and Planned Parenthood of Montana — have already been compromised by the RansomHub ransomware-as-a-service operation less than a year after its emergence after...

Malicious job offers purporting to be from widely known companies have been leveraged by threat actors to facilitate the distribution of cryptocurrency-stealing malware, reports Cybernews.

Rhode Island had some files from its Deloitte-managed public benefits computer system RIBridges leaked following a Brain Cipher ransomware attack earlier this month, according to The Associated Press.

AI tools will enable significant productivity and efficiency benefits for organizations in the coming year, but they also will exacerbate privacy, governance, and security risks.

While most of us are preparing the switch to a new year (If it&#x27s already the case for you: Happy New Year!), Attackers never stop and implement always new tricks to defeat our security controls. For a long time now, we have been flooded by...

In what's being called a 'major cybersecurity incident,' Beijing-backed adversaries broke into cyber vendor BeyondTrust to access US Department of Treasury workstations and steal unclassified data, according to a letter sent to lawmakers.

Stolen Cyberhaven employee credentials used to steal access tokens and business data from users of Facebook ads.

Nine U.S. telecommunications firms were confirmed by U.S. officials to have been compromised by Chinese state-backed threat group Salt Typhoon as part of its sweeping cyberespionage operation, with the newly-added unnamed entity's networks breached...

More than 15,000 internet-exposed Four-Faith F3x24 and F3x36 routers could potentially be compromised in ongoing intrusions exploiting the high-severity operating system command injection flaw, tracked as CVE-2024-12856, according to The Hacker News.