Security Bulletin

Cisco Talos researchers observed the new wiper malware in a destructive attack against an unnamed critical infrastructure organization.

The vulnerability, with a 9.9 CVSS score on a 10-point scale, results in different Cisco ISE deployments all sharing the same credentials as long as the software release and cloud platform remain the same.

Sophos researchers found this operation has similarities or connections to many other campaigns targeting GitHub repositories dating back to August 2022.

Cloud deployments of the Cisco Identity Services Engine could let attackers access sensitive data.

ConnectWise issued a patch to stave off attacks on ScreenConnect customers, but the company's disclosures don't explain what the vulnerability is and when it was first exploited.

SC Media opens nominations for its 12th annual Women in IT Security program, spotlighting leadership, resilience, and impact across the cybersecurity industry.

The US can't afford to wait for political consensus to catch up to technological change.

Discover how the CISA and DoD Zero Trust frameworks differ, and gain key insights to navigate the complexities of implementing Zero Trust across civilian and defense sectors.