Dell and HP were among the first to release patches and fixes for the bug. [...]

A novel form of phishing takes advantage of a disparity between how browsers and email inboxes read web domains. [...]

Microsoft's May Patch Tuesday roundup also included critical fixes for a number of flaws found in infrastructure present in many enterprise and cloud environments. [...]

Why a private college that stayed in business for 157 years had to close after the combo of COVID-19 and ransomware proved too much. [...]

The bug has a severe rating of 9.8, public exploits are released. [...]

The threat group has leaked data that it claims was stolen in the breach and is promising more government-targeted attacks. [...]

Researchers say a hacker is selling access to quality malware for chump change. [...]

A huge spike in fraudulent activities related to attacks leveraging business email accounts is a billion-dollar-problem. [...]

In this podcast with Mackenzie Jackson, developer advocate at GitGuardian, we dive into the report and also the issues that corporations face with public leaks from groups like Lapsus and more, as well as ways that developers can keep their code safe. [...]

Activity dubbed ‘Raspberry Robin’ uses Microsoft Standard Installer and other legitimate processes to communicate with threat actors and execute nefarious commands. [...]

A close look at a new type of network, known as a Cloud Area Network. [...]

The vulnerability is 'critical' with a CVSS severity rating of 9.8 out of 10. [...]

Source code and Bitcoin transactions point to the malware, which emerged in March 2020, being the work of APT38, researchers at Trellix said. [...]

A state-sponsored threat actor designed a house-of-cards style infection chain to exfiltrate massive troves of highly sensitive data. [...]

A sophisticated campaign utilizes a novel anti-detection method. [...]

A flaw in all versions of the popular C standard libraries uClibe and uClibe-ng can allow for DNS poisoning attacks against target devices. [...]

Popular apps to support people’s psychological and spiritual well-being can harm them by sharing their personal and sensitive data with third parties, among other privacy offenses. [...]

Aamir Lakhani, global security strategist and researcher at FortiGuard Labs, zeroes in on how adversaries are targeting 'remote everything'. [...]

A deep dive into securing containerized environments and understanding how they present unique security challenges. [...]

Exclusive Threatpost research examines organizations’ top cloud security concerns, attitudes towards zero-trust and DevSecOps. [...]

The threat group known as TA410 that wields the sophisticated FlowCloud RAT actually has three subgroups operating globally, each with their own toolsets and targets. [...]

GitHub shared the timeline of breaches in April 2022, this timeline encompasses the information related to when a threat actor gained access and stole private repositories belonging to dozens of organizations. [...]

At least five APTs are believed involved with attacks tied ground campaigns and designed to damage Ukraine's digital infrastructure. [...]

The Botnet appears to use a new delivery method for compromising Windows systems after Microsoft disables VBA macros by default. [...]

Four months after the critical flaw was discovered, attackers have a massive attack surface from which they can exploit the flaw and take over systems, researchers found. [...]