1+ week, 19+ hour ago  (12+ words) Critical flaw in Citrix NetScaler raises fears of new exploitation wave'Cybersecurity Dive...

2+ week, 2+ day ago  (521+ words) Researchers from VulnCheck warn that a misattributed proof of concept ignores a separate, high-severity flaw. As a wave of exploitation attempts target Cisco Software Defined Wide-Area Networking Systems, security teams might be overlooking a separate, important threat to the application,…...

3+ week, 21+ hour ago  (465+ words) A joint advisory says Iran-linked groups are targeting U.S. critical infrastructure using DDoS, phishing and other retaliatory techniques. A coalition of threat information groups on Wednesday warned that the U.S. and Israeli bombing campaign has led to increased risk of retaliatory cyberattacks…...

3+ week, 3+ day ago  (337+ words) The government can't rely on a "universal solution" to the challenges facing infrastructure operators, a top White House official said. The goal of the pilot programs is to "make sure that we can deploy new technology much more quickly than…...

4+ week, 2+ day ago  (573+ words) The groups formed a loose alliance in recent days, targeting critical infrastructure in the Middle East and the U.S. Pro-Russia threat actors have formed a loose coalition with Iran-nexus hacking groups in response to the bombing campaign launched by the U.S. and…...

4+ week, 2+ day ago  (406+ words) Stolen passwords have replaced infectious code as the most common tactic in major breaches, Cloudflare said. Ransomware began as a malware crisis, but, in recent years, attackers see greater opportunities in phishing attacks and the continuing prevalence of weak passwords....

1+ mon, 18+ hour ago  (371+ words) Security researchers warn that hacktivists and state-linked groups are using DDoS, phishing and other tactics against critical infrastructure. Security researchers and allied cyber authorities are warning of a heightened threat environment after the U.S. and Israel launched a wide ranging air…...

1+ mon, 21+ hour ago  (1224+ words) The technology giant and third-party security vendors are plotting an ambitious overhaul of how their products interoperate. Microsoft and its partners are quietly grinding away on a massive project to completely redesign how cybersecurity software runs in Windows, with the…...

1+ mon, 6+ day ago  (546+ words) CISOs see AI as necessary but insufficient technology and fraught with risks, a new report found. CISOs are feeling increasing pressure to integrate AI into their workflows, Splunk found, particularly as threat actors use the technology more often and in…...

1+ mon, 6+ day ago  (438+ words) A report by CrowdStrike shows cybercrime groups are outpacing security teams and increasingly abusing legitimate tools. Threat actors are using AI to add speed and scale to their hacking toolkits'and setting records for attack speeds that increasingly outpace security teams,…...