darkreading

The hotel giant will be held to higher security standards in a series of proposed requirements, including implementing a new annually reviewed security program.

The company is beginning to bring its systems back online, though the investigation wages on.

The future of cybersecurity will be shaped by how well we manage the explosion of NHIs.

CISOs in consumer and retail organizations appear to accept greater risks to allow for more innovation, which could be a model for future growth.

The bug is already being exploited in the wild, but Firefox has provided patches for those who may be vulnerable.

The third-party actor had access for two days, in the financial services company's second major breach of the year.

The European Union's new sanctions framework will target individuals and organizations engaging in pro-Russian activities, such as cyberattacks and information manipulation, to undermine EU support for Ukraine.

In its latest Windows preview, Microsoft adds a feature — Administrator Protection — designed to prevent threat actors from easily escalating privileges and restrict lateral movement.

When employees and leaders engage with CISOs early in innovation projects, security concerns are addressed proactively, building trust and ensuring innovation and security coexist.

Vulnerability prioritization has evolved over the years. Several frameworks exist to help organizations make the right decisions when it comes to deciding which patches to apply and when. But are these better than a Magic 8 Ball?

The average higher education institution is getting hit once a week now, and as one Oregon State University attack shows, the sector often lacks the resources to keep pace.

All across the Asia-Pacific region, large and diverse marketplaces for AI cybercrime tools have developed, with deepfakes proving most popular.

Global Signal Exchange will act as a global clearing house for online scams and fraud signals.

The tack highlights bad actors' interest in trusted development and collaboration platforms — and their users.

The bill is broken up into several pieces, including ransomware reporting and securing smart devices, among other objectives.

A stealthy new underground offering uses sophisticated adversary-in-the-middle (AitM) techniques to convincingly serve up "Microsoft" login pages of various kinds, with dynamic enterprise branding.