Security Bulletin

Ramping up our presence on Google Cloud Marketplace reflects Cisco’s adaptive approach to market preferences, and the company’s commitment to achieving customer outcomes.

Completion of an organization-wide cybersecurity risk assessment process at the Environmental Protection Agency is expected by Nov. 22, more than six years after such a mechanism had been recommended by the Government Accountability Office in an...

Both the Federal Trade Commission and Securities and Exchange Commission have been sought by Senate Finance Committee Chair Ron Wyden, D-Ore., to launch a probe into the cybersecurity failures of UnitedHealth Group that resulted in the massive...

Hackread reports that Santander Bank was claimed to be attacked by the ShinyHunters threat operation weeks after the major global financial entity confirmed having been impacted by a third-party data breach that mostly impacted customers in Chile...

U.S. enterprise risk intelligence and crisis management software provider Everbridge has confirmed having its corporate systems breached following an attack leveraging information obtained from a previous phishing campaign against its employees...

Consumer data is still a prime target for threat actors, and organizational consumption of data must be aligned to protect it. The new rights act seeks to do some of this, but it still needs tweaking.

More than 600,000 internet routers across several Midwest states have been taken offline by a widespread cyberattack against an unnamed U.S. telecommunications firm last October that involved the distribution of a malicious firmware update, Reuters...

Cybernews reports that updates have been introduced to the LightSpy surveillance tool to expand its targeting to systems running on older iterations of macOS after initially only targeting iOS devices.

Vulnerable Palo Alto Networks PAN-OS firewalls impacted by the flaw, tracked as CVE-2024-3400, have been targeted by suspected Lazarus Group-linked threat actors to distribute an updated version of the RedTail cryptocurrency mining malware since late...

Ukrainian military entities have been targeted in a now-disrupted month-long phishing attack campaign by Russia-linked threat operation FlyingYeti, also known as UAC-0149, that deployed the COOKBOX malware with cmdlet loading and execution...

U.S.-based IT software providers for the industrial and research sectors, European energy firms, and Asian pharmaceutical entities have been subjected to data exfiltration attacks by advanced persistent threat operation LilacSquid as part of a...

OSIM is a great advancement towards a more secure and resilient supply chain ecosystem.