The European Commission has unveiled an EU action plan designed to strengthen the cybersecurity of hospitals and healthcare... The post New EU action plan set to protect hospitals, healthcare...

The U.S. Treasury Department has sanctioned a network of individuals and front companies linked to North Korea's Ministry of National Defense that have generated revenue via illegal remote IT work...

The CSIS commission recommended a rethinking of existing procedures to quicken federal agencies’ pace. The post Bipartisan cloud study recommends speeding federal adoption, or remain vulnerable on...

Days before leaving office, President Joe Biden signed an executive order to shore up the United States' cybersecurity by making it easier to sanction hacking groups targeting federal agencies and...

The federal government will have more power to issue sanctions in response to ransomware incidents, and software vendors will have to do more to prove the security of their products under an...

The leak likely comes from a zero-day exploit affecting Fortinet’s products

Cybersecurity researchers have detailed an attack that involved a threat actor utilizing a Python-based backdoor to maintain persistent access to compromised endpoints and then leveraged this...

Ivanti has rolled out security updates to address several security flaws impacting Avalanche, Application Control Engine, and Endpoint Manager (EPM), including four critical bugs that could lead...

A proposed settlement order from the FTC will require GoDaddy to strengthen its security practices following multiple data breaches at the web hosting giant

2025-01-15 • Qianxin • Acey9, Alex.Turing, Daji, wanghao • elf.airashi, elf.kitty_soks5 Open article on Malpedia

2025-01-13 • Cert-AgID • Cert-AgID • win.lumma Open article on Malpedia

Nathaniel Fick, the ambassador for cyberspace and digital policy, has led US tech diplomacy amid a rising tide of pressure from authoritarian regimes. Will the Trump administration undo that work?

Wolf Haldenstein Adler Freeman & Herz LLP ("Wolf Haldenstein") reports it has suffered a data breach that exposed the personal information of nearly 3.5 million individuals to hackers. [...]

Technology is changing the global economy, and fintech companies are at the backbone of this transformation. To keep…

The FTC will require web hosting giant GoDaddy to implement basic security protections, such as multi-factor authentication and HTTPS APIs, to settle charges that it failed to secure its hosting...

The Federal Trade Commission (FTC) will require web hosting giant GoDaddy to implement basic security protections, including HTTPS APIs and mandatory multi-factor authentication, to settle charges...

Over a dozen programs used by creators of nonconsensual explicit images have evaded detection on the developer platform, WIRED has found.

As the nation’s cyber defense agency and the national coordinator for critical infrastructure security and resilience, the U.S.... The post CISA’s Easterly outlines plan against PRC cyber threats,...

The U.S. Coast Guard is set to publish this week its final rule covering maritime security regulations by... The post US Coast Guard releases final rule on maritime security and cybersecurity...

US president Joe Biden just issued a 40-page executive order that aims to bolster federal cybersecurity protections, directs government use of AI—and takes a swipe at Microsoft’s dominance.

A new UEFI Secure Boot bypass vulnerability tracked as CVE-2024-7344 that affects a Microsoft-signed application could be exploited to deploy bootkits even if Secure Boot protection is active. [...]

This article delves into the rising tide of MFA failures, the alarming role of generative AI in amplifying these attacks, the growing user discontent weakening our defenses, and the glaring...

Bitwarden is one of the best password managers on the market, but are you using it effectively? Here are a few tips to ensure you are.

The story of a signed UEFI application allowing a UEFI Secure Boot bypass

The Executive Order on Strengthening and Promoting Innovation in the Nation’s Cybersecurity includes guidance on third-party risk management and the need to adopt proven security practices to gain...

Cybercriminals are exploiting the California wildfires by launching phishing scams. Learn how hackers are targeting victims with fake domains and deceptive tactics, and how to protect yourself...

HP Wolf highlighted novel techniques used by attackers to bypass email protections, including embedding malicious code inside images and utilizing GenAI

A new EU action plan will be structured around four pillars: prevention, threat detection and identification, response to cyber-attacks and deterrence

AI Agents are AI assistants that are capable of managing your digital life, such as posting on official. An AI agent in the cryptocurrency space is just managing a wallet. On Virtual, one of these...

The incident helped the federal government to seize a virtual private server used by the group and more quickly “connect the dots,” Jen Easterly said. The post CISA director says threat hunters...