A joint advisory from the FBI, CISA, and NSA warns that the Conti ransomware operation is still a threat to enterprises, despite some takedowns of its infrastructure.
VMware has released a fix for a critical file-upload vulnerability, along with nearly 20 other bugs in vCenter Server.
The Azure OMI vulnerability (CVE-2021-38647) is under attack by several threat actors, including the Mirai botnet operators.
Cisco Talos researchers have identified a new backdoor being deployed by the Turla APT against targets in multiple countries.
Attackers exploiting the CVE-2021-40444 Windows flaw used infrastructure also known to be associated with a ransomware group.
On the anniversary of the release of Hackers, Zoe Lindsey and Pete Baker join Dennis Fisher to talk about the cultural influence of the movie, the effect it's had on hacker culture, and why it is still so beloved today.
Apple has patched two iOS vulnerabilities that have been exploited in the wild, including one that requires no user interaction.
Carolina Terrazas joins Dennis Fisher to talk about getting into security, the importance of diversity in hiring practices, and why Tom Brady is the worst.
The REvil ransomware group has come back online after disappearing following the attack on Kaseya in July.
Some proof-of-concept exploits have begun circulating for CVE-2021-40444 and no patch is yet available.
Attackers are exploiting an authentication bypass flaw in Zoho's ManageEngine ADSelfService Plus password management app.
Amélie Koran joins Dennis Fisher to talk about her start in computing with a Commodore 64, her early years in the private sector, and her security and policy work in several federal government agencies.
Attackers are exploiting a new zero day flaw in Windows (CVE-2021-40444) in targeted attacks.
New data shows that enterprises are not updating their Confluence instances to address a critical code execution flaw.
During Barack Obama's second term, some top administration officials began looking at bounties as a potential way to jump-start the effort to upgrade federal government's security programs. The idea was a radical one, so they decided to start slowly, by hacking the Pentagon.