CVE-2022-40684: Critical Authentication Bypass in FortiOS and FortiProxy

The TA455 phishing campaign used fake job offers on LinkedIn to deploy malware Read More

New phishing tool GoIssue targets GitHub, enabling mass phishing, and has been linked to the GitLoker extortion campaign Read More

Panaseer claims 72% of security leaders are taking out personal indemnity insurance as board scrutiny increases Read More

watchTowr has found a flaw in Citrix’s Session Recording Manager that can be exploited to enable unauthenticated RCE against Citrix...

Jamf observed North Korean attackers embedding malware within Flutter applications to target macOS devices, potentially to test a new way...

I’ve been writing about the problem with lawful-access backdoors in encryption for decades now: that as soon as you create...