Skip to content
Exchange Autodiscovery feature can cause Outlook to leak credentials.
Views expressed in this cybersecurity-intelligence update are those of the reporters and correspondents.
Accessed on 26 September 2021, 1301 UTC.
Please scroll down to read your selections.
The federal government wants consumer software to have cybersecurity labels; experts question the feasibility of the mandate.
In the wake of significant ransomware attacks, President Biden has sanctioned cryptocurrency exchange Suex in a clear attempt to prevent ransomware payments.
US government agencies urge immediate action to look for indicators of compromise and, if found, take recommended steps to mitigate.
A new McAfee report details the tools and techniques an APT group used to go undetected on a client network for over a year.
Three U.S. nationals, working as cyber mercenaries on behalf of the United Arab Emirates, have pleaded guilty to exploiting U.S. entities using U.S.-controlled technologies.
The OMB and CISA issue guidance to move all federal agencies to a shared zero-trust maturity model for FY22-24. The catch: No new funding.
The remote code execution vulnerability was recently patched for affected versions of Atlassian Confluence Server and Data Center; users are advised to apply the patch or upgrade.
The Azure vulnerability, which affects only those using the Jupyter Notebook feature, gives attackers access to data in databases.
This newly discovered ransomware works fast, has multiple ways to avoid detection, and preys on Windows systems with known vulnerabilities.
The Personal Information Protection Law will force global companies doing business in China to be more careful with cross-border flow of personal information.
Technology, financial, and education leaders commit to a wide range of initiatives to enhance the nation’s cybersecurity posture in collaboration with the Biden Administration.
Keep up with news of CSO, CISO, and other senior security executive appointments.
As devops matures into devsecops, cultural obstacles continue to exert drag.
This new, aggressive ransomware group also uses Cobalt Strike to move laterally across the network.
New research identifies four emerging ransomware groups currently affecting organizations and that show signs of becoming bigger threats in the future.
Research warns consumer-grade services can undermine risk assessment of corporate networks amid remote working as Houdini malware spoofs devices to exfiltrate data.
It’s not the IoT vendors’ fault. Lack of a cryptographically secure pseudo-random number generator subsystem for the internet of things devices will be vulnerable.
IIS malware presents diverse, persistent, and growing threats from old and new threat actors.
LOAD MORE For the latest cybersecurity, cybercrime, cyberwar, and information security news, please check the blog sidebar, links, and twitter posts. Thanks for joining us today.