The Linux Foundation and OpenSSF released a report on the state of education in secure software development. …many developers lack the essential knowledge and skills to effectively implement secure software development. Survey findings outlined in the report show nearly one-third of all professionals directly involved in development and deployment ­ system operations, software developers, committers,…

Read More

Pharma company Cencora confirmed in an updated SEC filing that sensitive personal and health data was exfiltrated by attackers in a February 2024 incident Read More

Read More

The “Eriakos” info-stealing campaign is using hundreds of fake web shops to defraud victims Read More

Read More

A Vipre study reveals a 20% increase in business email compromise attacks Read More

Read More

Cloudflare reports on the state of applications security. It claims that 6.8% of Internet traffic is malicious. And that CVEs are exploited as quickly as 22 minutes after proof-of-concepts are published. News articles. Read More

Read More

US non-profit OneBlood has issued an urgent appeal for donations after a ransomware attack has significantly reduced its capacity to distribute blood to hospitals Read More

Read More

Discovered by Zimperium’s zLabs team, the SMS Stealer malware was found in over 105,000 samples Read More

Read More

Meta has agreed a $1.4bn settlement with the State of Texas for failing to inform Facebook users about its biometric data capturing practices Read More

Read More

According to Fortinet, PyPI package Zlibxjson steals Discord tokens and browser data, including passwords and extensive user information Read More

Read More

More than a million domain names — including many registered by Fortune 100 firms and brand protection companies — are vulnerable to takeover by cybercriminals thanks to authentication weaknesses at a number of large web hosting providers and domain registrars, new research finds. Image: Shutterstock. Your Web browser knows how to find a site like…

Read More