Security Bulletin

The Department of the Interior’s Office of the Inspector General revealed that the department’s cloud environment was successfully breached using a tool that is available online.

Stop lateral movement in its track with zero trust access.

For International Women’s Day (IWD), we asked six women entrepreneurs to tell us how women’s leadership and creativity in the climate innovation space helps us build resilient ecosystems for a digital and low-carbon economy.

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2023-21237 Android Pixel Information Disclosure Vulnerability CVE-2021-36380 Sunhillo SureLine OS Command Injection...

CISA released three Industrial Control Systems (ICS) advisories on March 5, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-065-01 Nice Linear eMerge E3-Series...

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 10.0 ATTENTION: Exploitable remotely/low attack complexity/public exploits are available Vendor: Nice Equipment: Linear eMerge E3-Series Vulnerabilities: Path traversal, Cross-site scripting, OS command...

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: Santesoft Equipment: Sante FFT Imaging Vulnerability: Out-of-Bounds Write 2. RISK EVALUATION Successful exploitation of this vulnerability could allow a local...

Firm introduced a hybrid secure remote access solution that ensures protection while curbing operational costs.

Modern programmable logic controllers could be compromised in remote Stuxnet malware-like attacks with the use of novel IronSpider web-based malware developed by Georgia Institute of Technology researchers.

Organizations leveraging all on-premises iterations of JetBrains TeamCity servers have been urged to immediately apply fixes.

Two semiconductor equipment manufacturers in South Korea were noted by the country's National Intelligence Service to have had their systems breached by North Korean state-sponsored threat operations.

Iowa-based water, electricity, an internet service provider Muscatine Power and Water had data from 36,995 of the town's over 50,000 residents compromised following a ransomware attack.