darkreading

Three days after Ivanti published an advisory about the high-severity vulnerability CVE-2024-8190, threat actors began to abuse the flaw.

Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card.

While the 2024 election may see various cyber threats, existing security measures and coordination across all levels of government aim to minimize their impact.

The incident is a reminder why organizations need to pay attention to how they store and secure data in SaaS and cloud environments.

In this case study, a CISO helps a B2B marketing automation company straighten out its manual compliance process by automating it.

The FBI and CISA are warning citizens of attempts to convince voters that US election infrastructure has been compromised. (It hasn't been.)

As the 104th season of the National Football League kicks off, expect cyberattacks aimed at its customers, players, and arenas.

To prevent this, organizations should focus on developing secure hardware and firmware foundations, enabling them to manage, monitor, and remediate hardware and firmware security.

A technique to abuse Microsoft's built-in source code editor has finally made it into the wild, thanks to China's Mustang Panda APT.

Their findings highlight the frailty of some of the mechanisms for establishing trust on the Internet.

An attacker is using the tool to deploy a cryptominer and the Tsunami DDoS bot on compromised systems.

The dangerous ransomware group is targeting financial and insurance sectors using smishing and vishing against IT service desk administrators, cybersecurity teams, and other employees with top-level privileges.

Law enforcement seized electronics containing special hacking tools and software as well as a substantial amount of cash in the raids.

Most investors aren't demanding cybersecurity preparedness from startups, but founders should still be worried about the risks.