The Impacts of the SEC Cyber Rules on Incident Disclosure, CISO Liability

CISOs sound off on the long-term impacts of the SEC's cyber rules, with the regulations in effect for months now.

Apache Fixes OFBiz Remote Code Execution Flaw

Apache has issued a fix in OFBiz (Open For Business) that addresses an unauthenticated remote code execution bug.

Russian GRU Unit Linked to Critical Infrastructure Attacks

Several U.S. government agencies issued a new advisory Thursday warning of global cyber operations by threat actors that they affiliated with Unit 29155 of the GRU.

New North Korean Campaigns Target Cryptocurrency Industry

New social engineering and vulnerability exploitation campaigns by North Korean threat actors are targeting people and organizations in the cryptocurrency industry.

New Backdoor Linked to Earth Lusca Threat Group

Researchers have uncovered a new backdoor called KTLVdoor, which is written in the Go language, has versions for targeting Windows and Linux and is linked back to Chinese-speaking threat actor Earth Lusca.