A newer ransomware group known as Vice Society is targeting the PrintNightmare vulnerabilities in some of its intrusions now.
TA505, a well-known cybercrime group, is using signed MSI files and other techniques to install the ServHelper RAT on victims' systems.
Details of the ProxyShell Exchange server flaws are now public and attackers have begun scanning the Internet for vulnerable servers.
The use of weak random number generators in many IoT devices undermines the security of the encryption keys those devices generate.
CISA Director Jen Easterly said the agency's new Joint Cuber Defense Collaborative seeks imagination and innovation in the hacker community to help secure critical infrastructure.
During an investigation into suspected Iranian threat group ITG18, researchers found various security errors made by the attackers that gave them an inside look into their TTPs.
At Black Hat, Matt Tait of Corellium said the supply chain security problem may get far worse if platform providers don't step in to address it.
A whole of government approach, along with collaboration from the private sector, is key to disrupting the ransomware ecosystem.
Jules Okafor, CEO of RevolutionCyber, joins Dennis Fisher to talk about her unconventional career arc, the importance of empathy in leadership and communications, and why conventional security awareness programs don't work.
A new National Security Memorandum from President Biden sets performance goals for critical infrastructure security and creates a new CI security initiative.
Microsoft has released guidance for mitigating the recently disclosed PetitPotam NTLM relay attack.
While law enforcement and security researchers have made progress against some ransomware groups, Europol and other law enforcement officials say the threat will remain for some time.
A new print spooler vulnerability has surfaced in Windows 10 and newer versions, though it is not as serious as the Print Night mare bugs.
Researchers have uncovered a root privilege-escalation flaw that has been lurking in the Linux file system for at least seven years.
The U.S. has indicted four Chinese men it alleges were part of APT40 and conducted cyberespionage on behalf of the Chinese government.