The Verizon 2024 Data Breach Investigations Report shows a 180 percent increase in the use of vulnerability exploits in breaches from last year, thanks to MOVEit Transfer and other bugs.
Businesses have been preparing security policies for generative AI in the workplace, but many executives say that they still don’t fully understand the security implications of AI.
In a special bonus Memory Safe episode, Dennis Fisher, Decipher’s editor in chief, talks about his decades of experience writing about cybersecurity news, the article he authored that inspired him to get into the industry (hint: it involved phishing) and how the cybersecurity news world has changed over the years.
UnitedHealth Group's CEO revealed that attackers behind the hack gained initial access by leveraging compromised credentials for a Citrix application that didn’t have multi-factor authentication enabled.
The DHS guidelines outline how critical infrastructure entities can best be secured against the various risks associated with AI.
Welcome back to Source Code, Decipher's weekly news wrap podcast with input from our sources.
Cactus ransomware actors are targeting Qlik Sense servers with exploits for three separate vulnerabilities in an ongoing campaign.
New guidelines from the NSA highlight best security practices for deploying and operating AI systems.
The Ransomware Task Force’s most recent report shows how the industry needs to rely on more than takedown operations in order to have more effective, long-term impacts in combating ransomware.
Compromised credentials are at the root of many intrusions, but there are ways to reduce the threat from stolen credentials.
The Salvation Army's Lachlan McGill and Euan Moore talk about their experiences building a strong cybersecurity foundation, navigating the organization’s unique challenges and fostering a culture around security awareness.
The ransomware attack on Change Healthcare included the theft of PHI and PII, the company said.
The MITRE Corporation has disclosed a breach impacting one of its collaborative networks used for research, development and prototyping.
A Russian threat group known as Forest Blizzard has been using a custom tool called GooseEgg to exploit a Windows Print Spooler (CVE-2022-38028) for several years.
Welcome back to the Source Code podcast, Decipher’s weekly news wrap podcast with input from our sources.