Category: SecurityWeek

A North Korean threat actor has been observed targeting employees at technology firms in a new low-volume social engineering campaign,…

The US Cybersecurity and Infrastructure Security Agency (CISA) revealed on Thursday that the recently disclosed Citrix zero-day vulnerability tracked as…

A Rust-based file-encrypting ransomware was found this week to be impersonating the cybersecurity firm Sophos as part of its operation….

Firmware and hardware security company Eclypsium has disclosed information on two new vulnerabilities found by its researchers in the American…

APIs have certainly changed the way in which businesses operate. APIs allow businesses to push forward technologically with greater ease. This allows…

Multiple distributed denial-of-service (DDoS) botnets are targeting a vulnerability in Zyxel firewalls for which patches have been available since April,…

Cosmetics giant Estée Lauder has disclosed a data breach just as two ransomware groups made claims about stealing vast amounts…

The cyberattack that directory, identity, and access management company JumpCloud fell victim to in late June can be attributed to…

The process of encouraging secure cyber habits in end users is evolving from traditional awareness training toward changing end user…

A newly discovered peer-to-peer (P2P) worm is targeting Redis servers that are vulnerable to a year-old Lua sandbox escape bug,…

Adobe has released a second round of patches for some recently disclosed ColdFusion vulnerabilities, including flaws that appear to have…

Kevin Mitnick, a hacker who famously served time in prison for various computer and communications-related crimes, has died after a…