Windows Server Update Service exploitation ensnares at least 50 victims
At least 50 organizations have been impacted by attacks targeting a critical vulnerability in Windows Server Update Service, with most of them located in the…
Category: CyberSecurityDive
CISA, NSA unveil best-practices guide to address ongoing Exchange Server risks
The Cybersecurity and Infrastructure Security Agency and the National Security Agency on Thursday unveiled a best-practices guide to help organizations address security issues with their…
CISA updates guidance and warns security teams on WSUS exploitation
The Cybersecurity and Infrastructure Security Agency issued updated guidance on a critical vulnerability in Windows Server Update Service and urged security teams to immediately apply…
FCC will vote to scrap telecom cybersecurity requirements
The Federal Communications Commission will vote next month on whether to eliminate cybersecurity requirements for telecom carriers that the commission enacted under its previous leadership…
Canadian authorities warn of hacktivists targeting exposed ICS devices
Canadian authorities on Wednesday warned that hacktivist groups have breached critical infrastructure facilities in recent weeks, including water, energy and agricultural sites, by manipulating industrial…
AI adoption outpaces corporate governance, security controls
Dive Brief: The use of AI in the corporate workplace is growing so quickly that companies do not have the proper security controls and frameworks…
AI risks pack a punch, but governance provides a buffer
Dive Brief: Enterprise decision-makers say AI risks are packing a punch as adoption grows and tool rollouts continue, according to an EY survey of nearly…
Google probes exploitation of critical Windows service CVE
Google Threat Intelligence Group is investigating a series of attacks linked to a hacker targeting a critical vulnerability in Windows Server Update Service, Cybersecurity Dive…
F5 expects nation-state hack to curb revenues
Enterprise network technology vendor F5 expects a recent nation-state cyberattack to affect its revenues as customers hesitate to sign or renew contracts with the firm…
Conduent says data breach originally began with 2024 intrusion
Conduent said a breach that was first discovered in January has been traced back to an October 2024 intrusion that experts uncovered after a months-long…
UN member states sign cybercrime agreement despite industry, activist opposition
Dozens of countries signed a United Nations anti-cybercrime agreement on Saturday, moving the accord forward despite concerns from U.S. businesses and human-rights groups about its…
Hackers exploiting critical vulnerability in Windows Server Update Service
Security researchers are warning that cyber threat actors are abusing a critical vulnerability in Microsoft Windows Server Update Service. The vulnerability, tracked as CVE-2025-59287, involves…