darkreading

Multifactor authentication enforcement for Azure portal, Microsoft Entrata admin center, and Intune admin center will begin October.

What is a Verizon Wireless demo store app doing on non-Verizon phones, and why is it a vehicle to an attacker?

Cyber incidents like this highlight the need for tougher action on companies that fail to adequately protect consumer data.

The US needs to seize this moment to set a global standard for responsible and ethical AI, ensuring that technological progress upholds and advances human rights.

AI jailbreaks are not vulnerabilities; they are expected behavior.

The last known cyberattack waged against Iranian infrastructure took place last December with the blame placed on Israel and the US.

When it comes to this year's candidates and political campaigns fending off major cyberattacks, a lot has changed since the 2016 election cycle.

Users of Oracle's ERP for Web storefronts might not be aware of a misconfiguration which could put customer data at risk of exposure.

After loading a vulnerable driver, the utility uses a public exploit to gain privilege escalation and the ability to disable endpoint protection software.

Though it is possible for cyber disruptions to occur, CISA and the FBI say that ransomware will not impact casting or counting ballots.

Institutionalizing and sustaining fundamental cybersecurity practices requires a commitment to ongoing vigilance, active management, and a comprehensive understanding of evolving threats.

The Open-Source Software Prevalence Initiative, announced at DEF CON, will examine how open source software is used in critical infrastructure.

Teams designed AI systems to secure open source infrastructure software to be used in industries like financial services, utilities, and healthcare. Each finalist was awarded a $2 million prize.

Inconsistencies and lack of information in cybersecurity disclosures highlight the need for organizations to establish a robust materiality assessment framework.

The attack affects organizations that have synced multiple on-premises Active Directory domains to a single Azure tenant.

The vulnerability was given a high-severity CVSS score, indicating that customers should act swiftly to mitigate the flaw.

The threat group tracked as APT42 remains on the warpath with various phishing and other social engineering campaigns, as tensions with Israel rise.

Though WormGPT tools may not be a major problem now, organizations can't let their guard down.

Brain Cipher made a loud entry to the ransomware scene, but it doesn't seem to be quite as sophisticated as its accomplishment would suggest.