Industrial devices are getting the attention of threat actors, as evidenced in this campaign.

Research reveals how poor authentication requirements can be even in popular SaaS applications such as Shopify, Zendesk, Trello and others.

Atlassian has fixed some important vulnerabilities in its collaboration tools, one of them a hardcoded privileged user and password(!)

Securing diverse cloud environments is hard, but the ZTNA approach can help, as reported by Ponemon Institute research.

According to research, growth in e-commerce will fuel a boom in online payment fraud in the next 5 years.

A long overdue change in Microsoft Windows: account lockout policy turned on by default.

Back in 2021, a catastrophic flaw in the Log4J library forced many to patch their critical systems. Now, the US government is weighing in.

Innovations in phishing kits now enable bypass of MFA authentication, as shown in Microsoft's assessment of a successful campaign.

Ransomware providers and legitimate companies cover different market niches. In the case of the Maui ransomware, it's about healthcare.