Latest News

Three US government agencies have issued a joint warning to organizations about LockBit 3.0 ransomware attacks.

The recently identified Trigona ransomware has been highly active, targeting tens of organizations globally.

A newly identified threat actor named YoroTrooper is targeting organizations in Europe and the CIS region for espionage and data theft.

Mandiant links exploitation of the Fortinet zero-day CVE-2022-41328, exploited in government attacks, to a Chinese cyberespionage group.

Critical security flaws expose Samsung’s Exynos modems to “Internet-to-baseband remote code execution” attacks with no user interaction. Project Zero says an attacker only needs the victim’s phone number.

Meta has developed a ten-phase cyber kill chain model that it believes will be more inclusive and more effective than the existing range of models.

Firefox 111 patches 13 CVEs, including several vulnerabilities classified as high severity.

Polish counter-intelligence has dismantled a Russian spy ring that gathered information on military equipment deliveries to Ukraine.

CISA this week announced it is seeking public input on draft guidance for securing cloud business applications.

Join us for this webinar as we walk through three recent use cases where a new threat caught organizations off-guard.

Microsoft says Russia targeted at least 17 European nations in 2023 — mostly governments — and 74 countries since the start of the Ukraine war.

SecurityWeek’s Cyber Madness Bracket Challenge is a contest designed to bring the community together in a fun, competitive way through one of America’s top sporting events.

Health services company Independent Living Systems has disclosed a data breach that impacts more than 4 million individuals.

Russia-backed threat group Winter Vivern has targeted government entities in Poland, Ukraine, Italy, and India in recent campaigns

Cyberspies and cybercriminals exploited a Telerik vulnerability tracked as CVE-2019-18935 on a government agency’s IIS server.