New CISA directive tells federal agencies to patch by real-world risk, not CVSS severity scores
www.infosecurity-magazine.com
Organizations are aware of the challenges that new technologies like AI bring: but cybersecurity staff struggle to make time for the required training during working hours
NPM, part of GitHub, announced a new version of the npm package manager with several security improvements, including disabling install scripts
www.infosecurity-magazine.com
A notable operational pivot by the GRU-linked intrusion set APT28 (aka Fancy Bear, Sofacy, Forest Blizzard, Pawn Storm) that combines the MooBot botnet and compromised EdgeRouters.
Extortion-only attacks are increasing as data theft drives most ransomware claims, with many organizations unable to stop stolen data from being exposed
www.infosecurity-magazine.com
A massive, coordinated network of 152 malicious Google Chrome browser extensions has been dismantled after researchers caught the operation generating fake organic Google search traffic. Socket’s Thre...
When you wanted to buy something online your first port of call used to be a search engine. Now you’re just as likely to turn to an AI agent that will rank
