Even after their zero-day vulnerability turned into an n-day, attackers known as Marbled Dust or Sea Turtle continued to spy on military targets that had failed to patch Output Messenger.

A well-documented cybersecurity incident response program (CSIRP) provides the transparency needed for informed decision-making, protecting the organization in a constantly changing threat environment.

Specialization among threat groups poses challenges for defenders, who now must distinguish between different actors responsible for different facets of an attack.

Coinbase is going Liam Neeson on its attackers, potentially setting a new precedent for incident response in the wake of crypto- and blockchain-targeting cyberattacks.

An internal error led to public disclosure of reams of sensitive data that could be co-opted for follow-on cyberattacks.

Scattered Spider and other phishers and hacking groups are using rentable subdomains from dynamic DNS providers to obfuscate their activity and impersonate well-known brands.

The proactive steps taken by Co-op’s IT team are thought to be why the supermarket is recovering more quickly after being hacked than fellow UK retailer M&S from its recent cyber attack.

The Legal Aid Agency has been “working around the clock” to tackle the incident

Discover the key differences between Malwarebytes and McAfee to find the best antivirus solution for your needs. Read more now.

Civil society groups and academics are calling for the EU's GDPR to remain unchanged following the EU Commission's plans to revisit it

An Alabama man has been sentenced to 14 months for hacking the SEC’s X account

Cyble reports on critical IT vulnerabilities in SAP, Ivanti, Fortinet, ASUS, and others. Urgent patches needed for IT and ICS systems to prevent attacks.

Voluntary charter follows a series of high-profile ransomware attacks

RomethemeKit for Elementor has released a patch addressing an RCE vulnerability exposing 30,000 sites