Industry and ad hoc coalitions appear poised to help fill the gap created by NIST's decision to cut back on CVE data ...
In embracing device code phishing, attackers trick victims into handing over account access by using a service's legitimate ...
On March 10, 2026, Microsoft patched CVE-2026-26144, a cross-site scripting (XSS) vulnerability in Excel. XSS in Office isn't ...
The Maritime Transportation Security Act (MTSA) requires plans to protect OT systems, audits by independent third parties, ...
North Korea's Sapphire Sleet uses fake job offers and phony Zoom updates to deliver ClickFix attacks that steal credentials ...
The Secure Boot refresh is one of the largest coordinated security maintenance efforts across the Windows ecosystem, ...
A March 2025 update from Dragon Boss established persistence via scheduled tasks and arranged for any future payloads to be ...
Google, Meta, Microsoft about half the time don't comply with requests to opt out of online tracking per California law ...
Threat actors bypass non-IT security systems. Implementing 2FA could provide a needed extra security barrier in the physical ...
NIST now focuses on high-risk vulnerabilities to improve cybersecurity and address its growing backlog of CVE submissions ...
Enterprises breaches make more headlines, while smaller incidents tend to be under-reported, if at all, allowing such ...
Attackers can abuse the near-maximum severity flaw in nginx-ui to restart, create, modify, and delete NGINX configuration ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results