During a keynote at Black Hat 2022, former CISA director Chris Krebs outlined the biggest risk areas for the public and ...
GitHub, the owner of the Node Package Manager (npm), proposes cryptographically linking source code and JavaScript packages ...
Unusually, SOVA, which targets US users, now allows lateral movement for deeper data access. Version 5 adds an encryption ...
The head of Microsoft's Security Response Center defends keeping its initial vulnerability disclosures sparse -- it is, she ...
Eighteen companies, led by Amazon and Splunk, announced the OCSF framework to provide a standard way for sharing threat ...
Even among businesses with cyber insurance, they lack coverage for basic costs of many cyberattacks, according to a ...
A Q&A with NCC Group's Viktor Gazdag ahead of a Black Hat USA session on CI/CD pipeline risks reveals a scary, and expanding, ...
The Internet of Things industry's lack of cybersecurity standards is nothing new. We’ve been at this for years. However, with ...
Ransomware gang gained access to the company's VPN in May by convincing an employee to accept a multifactor authentication ...
A rising tide of threats — from API exploits to deepfakes to extortionary ransomware attacks — is threatening to overwhelm IT ...
A worsening threat landscape, increased digitization, and the long-term positive effects of modern security strategies are ...
The computing giant issued a massive Patch Tuesday update, including a pair of remote execution flaws in the Microsoft ...