Vulnerabilities/Threats

The critical authentication bypass vulnerability exists in Zoho ManageEngine ADSelfService Plus, officials report.

CISOs are more stressed, and the fallout is increased cyber-risk. Also, budget restrictions lead to a yawning chasm betw...

A new study reveals an active underground market for access credentials to tens of thousands of cloud accounts and resou...

The Open Web Application Security Project reshuffles its list of top threats, putting broken access controls and cryptog...

Security researchers share the details of four flaws in Open Management Infrastructure, which is deployed on a large num...

Privacy firm Kape says deal will double customer base and broaden reach into consumer VPN market

Follow these best practices to avoid the security holes created by these often-overlooked, but ubiquitous, devices.

There's a scarcity of customers using managed security services who are willing to talk to others about their experience...

This month's Patch Tuesday release addresses a remote code execution bug under active attack and a publicly known flaw i...

Though overall ransomware attack volumes dipped in the first half of this year, the number of campaigns involving three ...

Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card.

CISA advises organizations to patch quickly to protect against zero-day exploits.

DHS Secretary Mayorkas joins 130+ cyber experts at Billington Cybersecurity Summit that explores ransomware, 5G, zero tr...

A new analysis emphasizes how most security incidents can be avoided with strong patch management and password managemen...

An important security update addresses vulnerabilities in CoreGraphics and WebKit that may have been actively exploited.