SecurityWeek

Healthcare solutions giant Henry Schein is once again restoring systems after ransomware group claims it re-encrypted files.

New guidance from US and UK cybersecurity agencies provides recommendations for secure AI system development.

Hacktivism is evolving. It is important for both the law and cyber defenders to understand the current and potential activity of hacktivism to better understand how it should be treated.

Fidelity National Financial is experiencing service disruptions after systems were taken down to contain a cyberattack.

UK and Korea say DPRK state-sponsored hackers targeted governments, defense organizations via supply chain attacks.

Municipal Water Authority of Aliquippa in Pennsylvania confirms that hackers took control of a booster station, but says no risk to drinking water or water supply.

The U.S. military is increasing use of AI technology that will fundamentally alter the nature of war.

North Korean hackers breached a Taiwanese company and used its systems to deliver malware to the US, Canada, Japan and Taiwan in a supply chain attack.

Noteworthy stories that might have slipped under the radar: Idaho National Laboratory breach, GPS attacks target airplanes, Russian accuses China and North Korea of hacking.

Broadcom has cleared all regulatory hurdles and plans to complete its $69 billion acquisition of cloud technology company VMware.

Researchers at Aqua call urgent attention to the public exposure of Kubernetes configuration secrets, warning that hundreds of organizations are vulnerable to this “ticking supply chain attack bomb.”

Car parts giant AutoZone says nearly 185,000 individuals were impacted by a data breach caused by the MOVEit hack.

Researchers have tested the fingerprint sensors used for Windows Hello on three popular laptops and managed to bypass them.

San Francisco-based OpenAI has reached an agreement in principle for Sam Altman to return to OpenAI as CEO with a new initial board.

Microsoft invites researchers to new bug bounty program focused on vulnerabilities in its Defender products.

When too much subjectivity is mixed into risk assessment, it can produce a risk picture that is not an accurate representation of reality. 

Cybercriminals hacked into the Kansas court system, stole sensitive data and threatened to post it on the dark web in a ransomware attack that has hobbled access to records.

Administrators are urged to patch the recent CitrixBleed NetScaler vulnerability as LockBit starts exploiting it.

Lasso Security raises $6 million in seed funding to tackle cyber threats to secure generative AI and large language model algorithms.

New CISA pilot program brings cutting-edge cybersecurity services to critical infrastructure entities that need support.