Since the first edition of The Ultimate SaaS Security Posture Management (SSPM) Checklist was released three years ago, the...
Cybersecurity researchers have discovered a new cryptojacking campaign that employs vulnerable drivers to disable known security solutions...
An unknown threat actor is exploiting known security flaws in Microsoft Exchange Server to deploy a keylogger...
Taiwanese company QNAP has rolled out fixes for a set of medium-severity flaws impacting QTS and QuTS...
Popular enterprise services provider Zoom has announced the rollout of post-quantum end-to-end encryption (E2EE) for Zoom Meetings,...
Users of Veeam Backup Enterprise Manager are being urged to update to the latest version following the...
One of the enduring challenges of building modern applications is to make them more secure without disrupting...
GitHub has rolled out fixes to address a maximum severity flaw in the GitHub Enterprise Server (GHES)...
A new attack campaign dubbed CLOUD#REVERSER has been observed leveraging legitimate cloud storage services like Google Drive and Dropbox...
The persistent threat actors behind the SolarMarker information-stealing malware have established a multi-tiered infrastructure to complicate law enforcement takedown...
A critical security flaw has been disclosed in the llama_cpp_python Python package that could be exploited by threat actors...
Microsoft on Monday confirmed its plans to deprecate NT LAN Manager (NTLM) in Windows 11 in the...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a security flaw impacting NextGen Healthcare Mirth Connect to...
Cybersecurity researchers have discovered a critical security flaw in a popular logging and metrics utility called Fluent...
All developers want to create secure and dependable software. They should feel proud to release their code...
An Iranian threat actor affiliated with the Ministry of Intelligence and Security (MOIS) has been attributed as...
Multiple threat actors are weaponizing a design flaw in Foxit PDF Reader to deliver a variety of...
Cybersecurity researchers have observed a spike in email phishing campaigns starting early March 2024 that delivers Latrodectus, a...
A "multi-faceted campaign" has been observed abusing legitimate services like GitHub and FileZilla to deliver an array...
The U.S. Department of Justice (DoJ) has charged two arrested Chinese nationals for allegedly orchestrating a pig...
