Industry and ad hoc coalitions appear poised to help fill the gap created by NIST's decision to cut back on CVE data ...
In embracing device code phishing, attackers trick victims into handing over account access by using a service's legitimate ...
On March 10, 2026, Microsoft patched CVE-2026-26144, a cross-site scripting (XSS) vulnerability in Excel. XSS in Office isn't ...
The Maritime Transportation Security Act (MTSA) requires plans to protect OT systems, audits by independent third parties, ...
Enterprises breaches make more headlines, while smaller incidents tend to be under-reported, if at all, allowing such ...
North Korea's Sapphire Sleet uses fake job offers and phony Zoom updates to deliver ClickFix attacks that steal credentials ...
NIST now focuses on high-risk vulnerabilities to improve cybersecurity and address its growing backlog of CVE submissions ...
A March 2025 update from Dragon Boss established persistence via scheduled tasks and arranged for any future payloads to be ...
Threat actors bypass non-IT security systems. Implementing 2FA could provide a needed extra security barrier in the physical ...
The Secure Boot refresh is one of the largest coordinated security maintenance efforts across the Windows ecosystem, ...
Google, Meta, Microsoft about half the time don't comply with requests to opt out of online tracking per California law ...
Two recently fixed prompt injections in Salesforce Agentforce and Microsoft Copilot would have enabled an external attacker ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results