CrowdStrike and CyberArk invest in Dig's seed round, which was led by Team8, alongside Merlin Ventures and chairs of MongoDB and Exabeam. Read More
CrowdStrike and CyberArk invest in Dig's seed round, which was led by Team8, alongside Merlin Ventures and chairs of MongoDB and Exabeam. Read More
Mobile attacks have been going on for many years, but the threat is rapidly evolving as more sophisticated malware families with novel features enter the scene. Read More
For the first time in a year, security incidents involving email compromises surpassed ransomware incidents, a new analysis shows. Read More
System of Trust includes data-driven metrics for evaluating the integrity of software, services, and suppliers. Read More
Last month attackers quickly reverse-engineered VMware patches to launch RCE attacks. CISA warns it's going to happen again. Read More
From a scrappy contest where hackers tried to win laptops, Pwn2Own has grown into a premier event that has helped normalize bug hunting. Read More
Polygraph Data Platform adds Kubernetes audit log monitoring, integration with Kubernetes admission controller, and Infrastructure as Code (IaC) security to help seamlessly integrate security into developer workflows. Read More
Publicly released proof-of-concept exploits are supercharging attacks against unpatched systems, CISA warns. Read More
Build security in up front to secure open source code at the foundational level. Apply security controls, have engineering teams test, do code review, and use attacker-centric behavioral analytics to mitigate threats. Read More
Attackers appear to have found a way around PowerShell monitoring by using a default utility instead. Read More
It has never been more important for organizations of all sizes to prioritize securing their users and their infrastructure secrets with zero-trust network access. Read More
As demonstrated in Ukraine and elsewhere, the battlefield for today's warriors extends to the virtual realm with cyber warfare. Read More
A critical VMware bug tracked as CVE-2022-22954 continues to draw cybercriminal moths to its remote code-execution flame, with recent attacks focused on botnets and Log4Shell. Read More
Law enforcement is warning about a wave of Web injection attacks on US online retailers that are successfully stealing credit-card information from online checkout pages. Read More
The founders behind more than 90 cybersecurity firms have set up a $300 million investment fund. Read More
Multi-million-pound commitment will empower everyone from recent graduates to career changers to IT professionals in the UK to begin a successful career in cybersecurity. Read More
A widespread attack is underway to exploit known RCE flaw in Tatsu Builder WordPress plug-in, according to a new report. Read More