Hi, what are you looking for?
Members of Congress asked the U.S. Justice Department to investigate how foreign hackers breached a water authority near Pittsburgh, prompting CISA to warn other water and sewage-treatment utilities that they may be vulnerable.
Office supply retail giant confirms security incident disrupted online orders, communications channels and customer service lines.
Noteworthy stories that might have slipped under the radar: Utilities in US and Europe targeted in attacks, aerospace hacks, and Killnet leader unmasked.
New Turtle macOS ransomware is not sophisticated but shows that cybercriminals continue to target Apple devices.
The US has announced sanctions against North Korean cyberespionage group Kimsuky over its intelligence gathering activities.
Researchers found that a ‘silly’ attack method could have been used to trick ChatGPT into handing over training data.
Apple's security response team warns that flaws CVE-2023-42916 and CVE-2023-42917 were already exploited against versions of iOS before iOS 16.7.1.
Zyxel patches at least 15 security flaws that expose users to authentication bypass, command injection and denial-of-service attacks.
Meta removed three foreign influence operations from the Facebook platform during Q3, 2023. Two were Chinese in origin, and one was Russian, the company says.
Qlik Sense vulnerabilities CVE-2023-41266, CVE-2023-41265 and CVE-2023-48365 exploited for initial access in Cactus ransomware attacks.
The Black Basta ransomware group has infected over 300 victims and received more than $100 million in ransom payments.
US Treasury sanctions Sinbad, saying the cryptocurrency mixer is laundering funds for North Korean hacking group Lazarus.
Palo Alto Networks has launched a new rugged firewall for industrial environments and announced several OT security improvements.
ZeroedIn says personal information of 2 million individuals was compromised in an August 2023 data breach that impacts customers such as Dollar Tree.
Google shows how RETVec, a new and open source text vectorizer, can improve the detection of phishing attacks, spam and other harmful content.
New CISA alerts shed light on the harm occurring when software vendors fail to implement secure by design principles.