Potential new legislation to update FISMA could codify CISA's role and grant it additional authority.
A joint advisory from the FBI, CISA, and NSA warns that the Conti ransomware operation is still a threat to enterprises, despite some takedowns of its infrastructure.
VMware has released a fix for a critical file-upload vulnerability, along with nearly 20 other bugs in vCenter Server.
Cisco Talos researchers have identified a new backdoor being deployed by the Turla APT against targets in multiple countries.
The Azure OMI vulnerability (CVE-2021-38647) is under attack by several threat actors, including the Mirai botnet operators.
Attackers exploiting the CVE-2021-40444 Windows flaw used infrastructure also known to be associated with a ransomware group.
On the anniversary of the release of Hackers, Zoe Lindsey and Pete Baker join Dennis Fisher to talk about the cultural influence of the movie, the effect it's had on hacker culture, and why it is still so beloved today.
Apple has patched two iOS vulnerabilities that have been exploited in the wild, including one that requires no user interaction.
The REvil ransomware group has come back online after disappearing following the attack on Kaseya in July.
Carolina Terrazas joins Dennis Fisher to talk about getting into security, the importance of diversity in hiring practices, and why Tom Brady is the worst.
Some proof-of-concept exploits have begun circulating for CVE-2021-40444 and no patch is yet available.
Attackers are exploiting an authentication bypass flaw in Zoho's ManageEngine ADSelfService Plus password management app.
Attackers are exploiting a new zero day flaw in Windows (CVE-2021-40444) in targeted attacks.
Amélie Koran joins Dennis Fisher to talk about her start in computing with a Commodore 64, her early years in the private sector, and her security and policy work in several federal government agencies.
New data shows that enterprises are not updating their Confluence instances to address a critical code execution flaw.