New VanHelsing ransomware targets Windows, ARM, ESXi systems
A new multi-platform ransomware-as-a-service (RaaS) operation named VanHelsing has emerged, targeting Windows, Linux, BSD, ARM, and ESXi systems. [...]
New Arcane infostealer infects YouTube, Discord users via game cheats
A newly discovered information-stealing malware called Arcane is stealing extensive user data, including VPN account credentials, gaming clients, messaging apps,…
Why EPSS is a Game-Changer for Cybersecurity Risk Management
Having served on the MITRE.org CVE (OVAL) advisory board, I have spent years analyzing vulnerabilities and how they impact global…
Montana judge temporarily blocks rules banning transgender people from changing sex on state documents
A state judge in Montana temporarily blocked a state rule that prevents transgender people from changing the sex designation on…
Hackers exploit Roundcube webmail flaw to steal email, credentials
Threat actors have been exploiting a vulnerability in the Roundcube Webmail client to target government organizations in the Commonwealth of…
Could Security Misconfigurations Become No. 1 in OWASP Top 10?
As Superman has kryptonite, software has weaknesses — with misconfigurations leading the pack.
Spotlight on Oleria
Q&A with OIeria CEO Jim Alkove: Identity is the keystone to the future of cybersecurity and a critical area for…
Publishers Spotlight: DigitalXForce
When I go to BlackHat I’m always looking for cyber innovation across many vectors including cyber resilience artificial intelligence and…
Will Smaller Companies Buckle Under the SEC’s New Requirements?
Even though the new incident reporting rules create pressure, they serve as a forcing function for building a strong security…
Deconstructing Security Assumptions to Ensure Future Resilience
By breaking down fundamental assumptions, we can proactively plan for, and begin to achieve, future resilience.