Steve Zurier

Outpost24 researchers expect LummaC2 4.0 malware to evolve with improved obfuscation techniques and updates to its control panel.

Attacks on the Sophos and Oracle vulnerabilities are reportedly tracked to Chinese-backed threat groups.

While Intel released a fix for the Reptar flaw — and that’s good — security pros say teams must keep the BIOS, OS, and drivers updated as a matter of course.

Leading incident response companies take FBI to task for dragging on its investigation as security pros cite lack of manpower and hesitance of victims to come forward.

Cado Security Labs says OracleIV demonstrates how attackers can hijack an exposed Docker host and run malicious code in a portable way.

Attack on the U.S. subsidiary of the Industrial & Commercial Bank of China disrupted Treasury trading in New York earlier this week.

OpenAI reported multiple disruptions this week, culminating in a distributed-denial-of-service attack on ChatGPT on Nov. 8.

New Vanta report on trust offers strategies to automate the most tedious tasks and get security teams focused on their most strategic work.

Jamf says North Korean subgroup of the financially motivated Lazarus Group targets specific users the threat actors believe have access to cryptocurrency.

Security researchers say this new strain of Gootloader leverages "stealthier" SEO-poisoning to trick people who regularly use contracts, legal forms, and other business documents.