Exploit traffic against the Fortinet VPN CVE-2022-43475 vulnerability have spiked in recent weeks.
Researchers have developed an exploit for a group of vulnerabilities in VMware vRealize Log Insight that can lead to remote code execution as root.
An attacker exfiltrated three encrypted code-signing certificates from GitHub used to sign versions of Desktop for Mac and Atom.
The ISC has released a fix for a serious denial-of-service vulnerability in many versions of BIND 9.
The FBI and international alw enforcement agencies have taken down the Hive ransomware infrastructure.
Google has disrupted more than 50,000 accounts linked to the Dragonbridge pro-China information operation in the last year.
GoTo says an attacker stole some encrypted customer backups as well as an encryption key for some of those databases.
The TA444 threat group has changed its tactics in recent weeks, moving to new delivery methods and payloads.
The FBI says the North Korean threat actor Lazarus Group is responsible for the theft of $100 million in cryptocurrency from Harmony Horizon Bridge in June.
OpenText has fixed two remote code execution vulnerabilities in its Extended ECM content management server.
Rick Holland, CISO at Digital Shadows, talks about the role of empathy in building out an organization’s security program.
Active exploitation of the CVE-2022-47966 ManageEngine flaw is underway.
U.S. authorities have arrested Anatoly Legkodymov, the Russian alleged operator of the Bitzlato cryptocurrency exchange, which they say was a major hub for cybercriminal activity.
By looking at metadata in LNK files in recent campaigns, Talos researchers have linked the Bumblebee malware with the Qakbot and IcedID malware groups.
A set of serious flaws in the Contec CONPROSYS HMI software that could allow remote code execution have been addressed in an update.