Vulnerabilities/Threats

Menlo Security and Microsoft report recent campaigns implementing the technique, which helps attackers stealthily delive...

A new report examines the must-have components of a security incident readiness and response playbook.

Report examines new trends in the deep and dark web, how threat actors are exploiting the global COVID-19 crisis, and ri...

The VDP platform provides a single website where agencies can intake, triage, and route the vulnerabilities that researc...

Ten years after kicking off its Vulnerability Rewards Program, Google sees another decade of bounties with a focus on sh...

Network operations center managers Bart Stump and Neil Wyler (aka Grifter) again head up the show network, but with a ne...

Security vendor says it first spotted 'GhostEmperor' when investigating attacks targeting Microsoft Exchange flaws.

The ransomware group's decryption tool is poorly designed and coded, leading the group to focus more on data theft rathe...

Cybercriminals seek employees who will be a "weak link" in the organization when designing phishing attacks, a new repor...

Tenable has developed 10 foundational configuration checks for its solutions, including Tenable.io, Tenable.sc and both ...

Attack paths allow adversaries to reliably take control of nearly every Active Directory in the world.

To elevate your security strategy, hire skilled security talent while establishing a security-centric culture among empl...

List shows many relatively new and perimeter-like devices targeted in 2020 and 2021, according to an analysis by CISA, t...

The memo describes critical infrastructure threats as one of the most significant issues confronting the nation.

Government and industry must work hand-in-hand to execute a winning game plan against cyber terrorists.