Industry and ad hoc coalitions appear poised to help fill the gap created by NIST's decision to cut back on CVE data ...
In embracing device code phishing, attackers trick victims into handing over account access by using a service's legitimate ...
On March 10, 2026, Microsoft patched CVE-2026-26144, a cross-site scripting (XSS) vulnerability in Excel. XSS in Office isn't ...
The Maritime Transportation Security Act (MTSA) requires plans to protect OT systems, audits by independent third parties, ...
A March 2025 update from Dragon Boss established persistence via scheduled tasks and arranged for any future payloads to be ...
Enterprises breaches make more headlines, while smaller incidents tend to be under-reported, if at all, allowing such ...
The Secure Boot refresh is one of the largest coordinated security maintenance efforts across the Windows ecosystem, ...
North Korea's Sapphire Sleet uses fake job offers and phony Zoom updates to deliver ClickFix attacks that steal credentials ...
Attackers can abuse the near-maximum severity flaw in nginx-ui to restart, create, modify, and delete NGINX configuration ...
Threat actors bypass non-IT security systems. Implementing 2FA could provide a needed extra security barrier in the physical ...
NIST now focuses on high-risk vulnerabilities to improve cybersecurity and address its growing backlog of CVE submissions ...
Google, Meta, Microsoft about half the time don't comply with requests to opt out of online tracking per California law ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results