Cisco warns that nation state-backed hackers are exploiting at least two zero-day vulnerabilities in its ASA firewall ...

CISA added CVE-2022-38028 to its must-patch list one day after Microsoft reported that a Russian cyberespionage group known as APT28 (tracked by the tech giant as Forest Blizzard) has been exploiting ...

A North Korea-linked threat actor hijacked the update mechanism of eScan antivirus to deploy backdoors and cryptocurrency miners.

Hive Systems conducts another study on cracking passwords via brute-force attacks, but it’s no longer targeting MD5.

KnowBe4 boasts that the merger will create “the largest, advanced AI-driven cybersecurity platform for managing human risk.” ...

Bain Capital Ventures and angel investors invest $11 million in automated alerts analysis startup Prophet Security.

The LockBit ransomware gang leaks 1 Gb of data allegedly stolen from government contractor Tyler Technologies.

Google on Wednesday announced the availability of a Chrome 124 update that patches four vulnerabilities, including a critical ...

UnitedHealth confirms that personal and health information was stolen in a ransomware attack that could cost the company up ...

Microsoft PlayReady vulnerabilities that could allow rogue subscribers to illegally download movies from popular streaming ...

Report unveils mixed signals in cybersecurity. While defenses are improving, attackers still retain the upper hand.

Palo Alto Networks firewall vulnerability CVE-2024-3400, exploited as a zero-day, impacts a Siemens industrial product.