Quick Hits

The three open source tools flag malicious JavaScript packages before they are downloaded and installed from the npm package manager.

Federal officials tout the strategy as a more proactive approach to securing government networks.

The SOAR platform helps CISOs automate the security operations center via a low-code/no-code platform.

Latest bulletin out of DHS advises state and local governments, critical infrastructure operators to be on alert.

New Cybersecurity National Security Memorandum will let the spy agency "identify vulnerabilities, detect malicious threat activity and drive mitigations," agency cybersecurity director says.

The incident compromised the personal data and confidential information of more than 515,000 "highly vulnerable people," the Red Cross reports.

The massive funding round comes as the rise of cloud and remote work led to new threats and growing security and privacy concerns.

Permiso's co-founders say the No. 1 problem in the cloud is identity, and their platform is designed to tackle the notoriously difficult challenge of monitoring the activity of those identities.

CISA issues alert for senior leadership of US organizations amid rising tensions between Russia and Ukraine.

VPNLab was used to support criminal activity, including ransomware campaigns and other attacks, Europol officials report.

An attack discovered on Dec. 4, 2021 forced the Maryland Department of Health to take some of its systems offline.

A series of attacks against small and medium-sized businesses has led to major cryptocurrency losses for the victims.

Flashpoint plans to integrate Risk Based Security data and technology into its platform to boost threat intelligence and vulnerability management.

New OT security platform directs attackers toward phony assets to deflect threats.

Advisory explains how to detect, respond to, and mitigate cyberattacks from Russian state-sponsored hacking groups.