Linux users running the enterprise-search platform Solr are potentially vulnerable to remote code execution attack.

In an advisory published this week, the NSA outlined the risks of Transport Layer Security Inspection (TLSI) and provided security mitigations for organizations.

In scope RCE Mozilla bug bounty payouts have also tripled to reach $15,000.

External Key Manager and Key Access Justification are intended to give organizations greater visibility into requests for data access.

Organizations that have not yet applied a pair of months-old critical patches from Oracle for E-Business Suite are at risk of attacks on their financial systems, the application security firm says.

The Coalition Against Stalkerware launched this week, with the aim of offering a centralized location for helping victims of stalkerware, as well as defining what stalkerware is in the first place.

Twitter wagged its finger at the UK’s Conservative party for renaming its press account “factcheckUK” during a live TV debate.

Need a 101 lesson on Web application firewalls? Here's your crib sheet on what a WAF is, how it works, and what to look for when you're in the market for a new solution.

Explore the latest news and expert commentary on Cyberattacks & Data Breaches, brought to you by the editors of Dark Reading

Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers

Can’t watch Disney+ from your country? Use one of the 5 best free VPNs to unblock and stream Disney Plus from anywhere in the world.

Check Point researchers found that hundreds of marquee Android mobile apps still contain vulnerabilities that allow remote code-execution even if users update.

If you downloaded the Monero command line wallet recently, check it before using it.

A look at the characteristics of real-world business email compromise attacks — and what makes them tick.

The Ultimate 2019 Security Team Assessment Template is a unique tool that encapsulates all the major KPIs of the organizational security team’s main pillars.

Google has patched a bug in the Android camera app that allowed other applications to bypass the strict controls on camera and audio access.

A chief information security officer's job inherently involves conflict, but a go-along-to-get-along approach carries its own vulnerabilities and risks.

A computer science degree isn't the only path into a cybersecurity career.

The mobile malware, which incorporates Anubis source code, could evolve into a fully fledged spyware in the future.