Attacks/Breaches

Timing of the move has evoked at least some skepticism from security experts about the country's true motives.

An attack discovered on Dec. 4, 2021 forced the Maryland Department of Health to take some of its systems offline.

The next five years will bring the widespread use of hyperautomation in patch management. Part 3 of 3.

A series of attacks against small and medium-sized businesses has led to major cryptocurrency losses for the victims.

Detecting infection traces from Pegasus and other APTs can be tricky, complicated by iOS and Android security features.

The good news is that you can take steps to avoid advanced persistent threats. The bad news is that it might cost you iMessage. And FaceTime.

An attack campaign detected in October delivers variants of Nanocore, Netwire, and AsyncRATs to target user data.

By combining risk-based vulnerability prioritization and automated patch intelligence, organizations can apply patches based on threat level. Part 2 of 3.

New OT security platform directs attackers toward phony assets to deflect threats.

Advisory explains how to detect, respond to, and mitigate cyberattacks from Russian state-sponsored hacking groups.

The rise — partly due to Log4j — helped boost cyberattack attempts to an all-time high in Q4 2021, new data shows.

Companies are more likely to rely on outside attorneys to handle cyber response in order to contain potential lawsuits. Meanwhile, cyber-insurance premiums are rising but covering less.

An FBI warning says the FIN7 cybercrime group has sent packages containing malicious USB drives to US companies in an effort to spread ransomware.

In the wake of WannaCry and its ilk, the National Vulnerability Database arose to help security organizations track and prioritize vulnerabilities to patch. Part 1 of 3.

An unknown threat group has been observed attacking VMware Horizon servers running versions with Log4j vulnerabilities.