The infamous GlassWorm malware has infected dozens more Open VSX software packages, according to new research.

Researchers uncovered an extensive cyberespionage campaign that used novel backdoors and familiar evasion techniques to maintain persistent access.

A social engineering campaign impersonating PayPal and Amazon uses customer support interactions to acquire sensitive info.

The dirty secret of critical infrastructure and manufacturing isn't that we are "behind" on patching. It's that patching is ...

With StrongDM's product portfolio, Delinea will be able to offer privilege access management across cloud, SaaS, Kubernetes, ...

Rescinded sanctions and reactivated contracts have created confusion about the Trump administration's spyware policy and where it draws the line.

Phishing dominates as the most prevalent smartphone security issue, and users need to stay alert, Omdia research shows.

With rapid advances in AI, we now enter an era of automated risk remediation. Read about readiness to leverage agentic AI for ...

Using Anthropic and OpenAI's AI systems — and a detailed playbook prompt — cyberattackers gained access to Mexico's agencies ...

In this Reporters' Notebook, we discuss cyberattacks on the Milan-Cortina Winter Games, and key defense takeaways for regular organizations.

The excitement around Cisco's latest SD-WAN bugs has inspired some light fraud, misunderstandings, and overlooked risks.

Forget stolen credentials and misconfigurations; AI means vulnerability exploits that beat patching cycles are the top cause of compromises in the cloud.