Latest News

B2B payment security provider NsKnox raised $17 million in a new funding round that brings the total raised by the company to $35.6 million.

Many developers and security people admit to having experienced a breach effected through compromised API credentials.

Vulnerabilities in GE’s Proficy Historian product could be exploited for espionage and to cause damage and disruption in industrial environments.

CISA gave federal agencies a February deadline to patch a critical vulnerability in the CentOS Control Web Panel utility.

Vulnerabilities identified in TP-Link and NetComm router models could be exploited to achieve remote code execution (RCE).

Norway‎-based DNV said a ransomware attack on its ship management software impacted 1,000 vessels.

A source code security audit led to the discovery of several vulnerabilities in Git, the widely used distributed version control system.

Nissan North America told roughly 25,000 customers that their personal information was exposed in a data breach via a third-party provider.

Oracle's Critical Patch Update for January 2023 includes 327 patches, with more than 70 that address critical-severity vulnerabilities.

Vendors and agencies are bypassing a security patch that Adobe released in February 2022 to address CVE-2022-24086.

Fortinet warned of three malicious PyPI packages containing code that fetches the Wacatac trojan and information stealer.

Privacy experts have said they fear pregnancies could be surveilled and the data shared with police or sold to vigilantes.

Orca Security published details on four server-side request forgery (SSRF) vulnerabilities impacting different Azure services.

Avast and Bitdefender have released decryptors to help victims of BianLian and MegaCortex ransomware recover their data for free.

A GitHub Codespaces feature meant to help with code development and collaboration can be abused for malware delivery.