In The News

CISA Releases Seven Industrial Control Systems Advisories

CISA Adds Three Known Exploited Vulnerabilities to Catalog

Microsoft Patch Tuesday, August 2025 Edition

Entra & Azure Elevated Access Revisited

KrebsOnSecurity in New ‘Most Wanted’ HBO Max Series

CISA Releases Ten Industrial Control Systems Advisories

CISA Issues ED 25-02: Mitigate Microsoft Exchange Vulnerability

CISA Releases Malware Analysis Report Associated with Microsoft SharePoint Vulnerabilities

Microsoft Releases Guidance on High-Severity Vulnerability (CVE-2025-53786) in Hybrid Exchange Deployments

Who Got Arrested in the Raid on the XSS Crime Forum?

CISA Adds Three Known Exploited Vulnerabilities to Catalog

CISA Releases Two Industrial Control Systems Advisories

CISA and USCG Issue Joint Advisory to Strengthen Cyber Hygiene in Critical Infrastructure

Thorium Platform Public Availability

CISA Releases Two Industrial Control Systems Advisories

Eviction Strategies Tool Released

Scammers Unleash Flood of Slick Online Gaming Sites

Extending AD CS attack surface to the cloud with Intune certificates

CISA and Partners Release Updated Advisory on Scattered Spider Group

CISA Releases Part One of Zero Trust Microsegmentation Guidance

CISA Releases Five Industrial Control Systems Advisories

CISA Adds Three Known Exploited Vulnerabilities to Catalog

CISA Releases Six Industrial Control Systems Advisories

Phishers Target Aviation Execs to Scam Customers

Joint Advisory Issued on Protecting Against Interlock Ransomware

CISA Adds Four Known Exploited Vulnerabilities to Catalog

CISA Releases Nine Industrial Control Systems Advisories

CISA Adds Two Known Exploited Vulnerabilities to Catalog

Microsoft Fix Targets Attacks on SharePoint Zero-Day

Microsoft Releases Guidance on Exploitation of SharePoint Vulnerability (CVE-2025-53770)

CISA Adds One Known Exploited Vulnerability, CVE-2025-53770 “ToolShell,” to Catalog

CISA Releases Three Industrial Control Systems Advisories

CISA Adds One Known Exploited Vulnerability to Catalog

Poor Passwords Tattle on AI Hiring Bot Maker Paradox.ai

CISA Releases Six Industrial Control Systems Advisories

CISA Adds One Known Exploited Vulnerability to Catalog

DOGE Denizen Marko Elez Leaked API Key for xAI

CISA Releases Thirteen Industrial Control Systems Advisories

CISA Adds One Known Exploited Vulnerability to Catalog

UK Arrests Four in ‘Scattered Spider’ Ransom Group

CISA Releases One Industrial Control Systems Advisory

Microsoft Patch Tuesday, July 2025 Edition

CISA Adds Four Known Exploited Vulnerabilities to Catalog

CISA Releases Four Industrial Control Systems Advisories

Big Tech’s Mixed Response to U.S. Treasury Sanctions

CISA Adds One Known Exploited Vulnerability to Catalog

CISA Releases Seven Industrial Control Systems Advisories

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA and Partners Urge Critical Infrastructure to Stay Vigilant in the Current Geopolitical Environment

CISA Adds One Known Exploited Vulnerability to Catalog

Senator Chides FBI for Weak Advice on Mobile Security

CISA Releases Two Industrial Control Systems Advisories

CISA Adds Three Known Exploited Vulnerabilities to Catalog

New Guidance Released for Reducing Memory-Related Vulnerabilities

CISA Releases Eight Industrial Control Systems Advisories

CISA Releases Five Industrial Control Systems Advisories

CISA Adds One Known Exploited Vulnerability to Catalog

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA Releases Ten Industrial Control Systems Advisories

CISA Releases Cybersecurity Advisory on SimpleHelp RMM Vulnerability

Inside a Dark Adtech Empire Fed by Fake CAPTCHAs

CISA Releases Four Industrial Control Systems Advisories

CISA Adds Two Known Exploited Vulnerabilities to Catalog

Patch Tuesday, June 2025 Edition

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA Adds One Known Exploited Vulnerability to Catalog

CISA Releases Seven Industrial Control Systems Advisories

Proxy Services Feast on Ukraine’s IP Address Exodus

Updated Guidance on Play Ransomware

CISA Adds Three Known Exploited Vulnerabilities to Catalog

CISA Releases Three Industrial Control Systems Advisories

CISA Adds Five Known Exploited Vulnerabilities to Catalog

U.S. Sanctions Cloud Provider ‘Funnull’ as Top Source of ‘Pig Butchering’ Scams

CISA Releases Five Industrial Control Systems Advisories

Pakistan Arrests 21 in ‘Heartsender’ Malware Service

New Guidance for SIEM and SOAR Implementation

CISA Releases One Industrial Control Systems Advisory

New Best Practices Guide for Securing AI Data Released

CISA Releases Two Industrial Control Systems Advisories

CISA Adds One Known Exploited Vulnerability to Catalog

Advisory Update on Cyber Threat Activity Targeting Commvault’s SaaS Cloud Application (Metallic)

Oops: DanaBot Malware Devs Infected Their Own PCs

Russian GRU Cyber Actors Targeting Western Logistics Entities and Tech Companies

Threat Actors Target U.S. Critical Infrastructure with LummaC2 Malware

CISA Releases Thirteen Industrial Control Systems Advisories

KrebsOnSecurity Hit With Near-Record 6.3 Tbps DDoS

CISA Adds Six Known Exploited Vulnerabilities to Catalog

CISA Releases Twenty-Two Industrial Control Systems Advisories

CISA Adds Three Known Exploited Vulnerabilities to Catalog

Breachforums Boss to Pay $700k in Healthcare Breach

CISA Adds One Known Exploited Vulnerability to Catalog

Patch Tuesday, May 2025 Edition

7 Essential GLBA Compliance Requirements for Pawn Shops in 2025

CISA Adds Five Known Exploited Vulnerabilities to Catalog

Update to How CISA Shares Cyber-Related Alerts and Notifications

CISA Releases Five Industrial Control Systems Advisories

CISA Adds Two Known Exploited Vulnerabilities to Catalog

Pakistani Firm Shipped Fentanyl Analogs, Scams to US

CISA Adds One Known Exploited Vulnerability to Catalog

Unsophisticated Cyber Actor(s) Targeting Operational Technology