Zero-day exploits hit Cisco ISE and Citrix systems in an advanced campaign
The Amazon Threat Intelligence team has now disclosed an advanced persistent threat (APT) campaign that exploited […]
What CISOs need to know about new tools for securing MCP servers
Model Context Protocol allows AI agents to connect to data sources but the first iteration of […]
Compliance Milestones Arrive: DORA and PCI DSS 4.0 in Effect, PQC Next on the Horizon
The financial institutions regulatory environment has taken a new dimension of intensity. As the Digital Operational […]
Google asks US court to shut down Lighthouse phishing-as-a-service operation
Google is asking to a US court for help in dismantling the infrastructure behind the Lighthouse […]
Wie ChatGPT sich selbst eine Prompt Injection zufügt
Forscher haben neue Methoden für Angriffe über ChatGPT aufgedeckt. PhotoGranary02 – shutterstock.com Forscher des Sicherheitsunternehmens Tenable […]
Miniatur Wunderland Hamburg warnt vor Datendiebstahl
Der Ticketshop des Miniatur Wunderland Hamburg wurde offenbar gehackt. JHVEPhoto – shutterstock.com Das Miniatur Wunderland Hamburg […]
UK cybersecurity bill brings tougher rules for critical infrastructure
The UK government has introduced a new legislation to harden national cyber defenses across critical infrastructure, […]
Malicious npm package sneaks into GitHub Actions builds
A malicious npm package named “@acitons/artifact” was found impersonating the legitimate “@actions/artifact” module, directly targeting the […]
Beyond the checklist: Shifting from compliance frameworks to real-time risk assessments
To keep up with a quickly changing threat environment, organizations are reassessing how they assess risk. […]
Enterprise network security blighted by legacy and unpatched systems
The extent to which enterprise networks are sprawling, half-visible, and full of PC and servers running […]