Learning from the successes and failures of the ongoing conflict could help foreign adversaries carry out more effective cyber attacks in the future, according to one national cyber security chief

New cross-portfolio capabilities aim to help customers improve security posture and enable DevSecOps

May 2022's routine Patch Tuesday fixes seven 'critical' issues, including a familiar headache for IT administrators

The new services will see Microsoft's security experts providing hands-on, proactive threat hunting for businesses unable to fully build out a SOC due to the industry's skills shortage

Despite its devastating impact, cyber security researchers reflect on how much worse the attacks could have been

The free service will focus on checking for TLS and DMARC compliance to protect against anti-spoofing and email hijacking

The US has released a $10 million bug bounty for knowledge of the attackers

Small businesses can look forward to enterprise-grade endpoint security as well as automated investigation and remediation capabilities

GitHub.com will require 2FA by the end of 2023, as the company works to secure the software ecosystem through improved account security

This one trick can stop ransomware executing file encryption

NCSC detailed the government-level attribution process at CYBERUK 2022 and why it took so much longer to assign blame compared to the private sector

We take a look at what's needed to really secure internet-connected devices

An account promoting the project—which offers a range of threat activity from info-stealing to crypto-mining to ransomware as individual modules—has more than 500 subscribers.

Botnet operator had thousands of hacked credential listings, according to the DoJ

The group that shut down the second largest city in Greece was not new but a relaunch of DoppelPaymer.

Open source IT monitoring system gets patched

Three RSAC 2022 sessions take deep dives into the security considerations around data cloud transformation.