Companies are still struggling to gain confidence in the security of their open source projects, but shifting security earlier in the development process shows promise.
Stories by John P. Mello Jr.
On the one-year anniversary of the Colonial Pipeline attack, industry insiders reflect on the event's effect on cyber security practice and perception.
Researchers at Trend Micro have discovered some new Linux-based ransomware that's being used to attack VMware ESXi servers.
CISOs are also less concerned about ransomware attacks, but many says their organisations are still not properly prepared for them.
Suspected state-sponsored threat actor uses IceApple to target technology, academic and government sectors with deceptive software.
Misconfiguration of the Google Cloud Platform API could create an exploitable behaviour that leads to service compromise.
LemonDuck, a well-known cryptomining botnet, is targeting Docker on Linux systems to coin digital money, CloudStrike has reported.
Bitdefender has thrown its hat into the extended detection and response (XDR) ring with a native offering under the banner of GravityZone XDR.
A new crime site for hackers is positioning itself as an alternative to Raid Forums, a popular watering hole for threat actors before it was taken down in February.
ESET has announced changes to its cyber security product line which includes an auto-update, brute-force protection, and Android web control.
A year after pandemic peak, malicious threats to businesses and consumers rose above pre-virus levels, especially for mobile devices.
Cloud-native security provider ExtraHop has added heat-mapping capabilities to its Amazon Web Service flagship cyber solution product.
A new platform aimed at reducing the need for multiple security vendors to protect an organisation's digital assets has been unveiled by Forcepoint.
More than three in five companies were targeted by software supply chain attacks in 2021, according to a recent survey by Anchore.
The Prophet Spider gang uses the Log4Shell vulnerability to target the Tomcat service in unpatched VMware Horizon systems.