The Warlock ransomware group continues to exploit unpatched Microsoft SharePoint servers with a new focus on stealthier, more resilient post-exploitation activity, thanks to its use of a new bring ...

The infamous GlassWorm malware has infected dozens more Open VSX software packages, according to new research.

Researchers uncovered an extensive cyber espionage campaign that used novel backdoors and familiar evasion techniques to maintain persistent access.

Discover how Franz Regul, former CISO for the Paris 2024 Olympics, tackled unique cybersecurity challenges to protect the Olympics from evolving threats.

A social engineering campaign impersonating PayPal and Amazon uses customer support interactions to acquire sensitive info.

The dirty secret of critical infrastructure and manufacturing isn't that we are "behind" on patching. It's that patching is ...

Sightline Security's founder & advisory board discuss how cybersecurity poses significant problems for nonprofits and suggest ways the industry can help.

With rapid advances in AI, we now enter an era of automated risk remediation. Read about readiness to leverage agentic AI for ...

Using Anthropic and OpenAI's AI systems — and a detailed playbook prompt — cyberattackers gained access to Mexico's agencies ...

With StrongDM's product portfolio, Delinea will be able to offer privilege access management across cloud, SaaS, Kubernetes, ...

An undefined Chinese-speaking actor wields a combo of custom malware, open source tools, and LOTL binaries against Windows ...

Two attacks on Qatari entities signal a shift in focus for China-backed actors and demonstrate how quickly they can pivot in response to geopolitics.