Top lawmaker asks White House to address open-source software risks
Listen to the article 3 min This audio is auto-generated. Please let us know if you have feedback. A top Senate Republican is pressing the…
Category: CyberSecurityDive
State-linked and criminal hackers use device code phishing against M365 users
Multiple threat groups have been ramping up attacks using a technique called device code phishing to trick users into granting access to their Microsoft 365…
Rockrose Development suffers security breach affecting 47,000 people
Dive Brief: Apartment owner and developer Rockrose Development Corp. recently found that unauthorized individuals hacked its systems and claimed to have acquired confidential information, according…
China-linked hackers exploit insecure setting in Cisco security products
Listen to the article 2 min This audio is auto-generated. Please let us know if you have feedback. China-linked hackers have been using misconfigured Cisco…
Surge of credential-based hacking targets Palo Alto Networks GlobalProtect
A coordinated, credential-based hacking campaign has been targeting Palo Alto Networks GlobalProtect services, as well as Cisco SSL VPNs, in a surge of mid-December attacks,…
FortiGate devices targeted with malicious SSO logins
Researchers warn of intrusion activity that was first discovered on Friday targeting Fortinet FortiGate appliances using malicious single sign-on (SSO) logins, according to a blog…
NIST adds to AI security guidance with Cybersecurity Framework profile
Listen to the article 3 min This audio is auto-generated. Please let us know if you have feedback. The National Institute of Standards and Technology…
Russia-linked hackers breach critical infrastructure organizations via edge devices
Listen to the article 3 min This audio is auto-generated. Please let us know if you have feedback. A Russia-linked hacker group has been targeting…
React2Shell attacks expand widely across multiple sectors
Microsoft researchers warned that “several hundred machines” across a wide range of organizations have been compromised via the exploitation of a critical vulnerability in React…
CISOs view hybrid environments as best way to manage risk, compliance
Hybrid infrastructure that includes a mix of public/private cloud environments, on-premises workloads and air-gapped systems are preferred by security leaders as a way to boost…
Cybersecurity concerns are paramount among executives in almost all roles, regions and industries
Listen to the article 3 min This audio is auto-generated. Please let us know if you have feedback. Dive Brief: Corporate executives see cybersecurity as…
Fighting AI with AI: How midmarket teams can turn the tables on smarter threats
Ever since generative AI exploded into mainstream use, it has become both a critical business enabler … and one of the greatest security threats. Eighty-four…