ConnectWise Automate, a popular remote monitoring and management tool, has been patched to address a vulnerability that could allow attackers to compromise confidential data or other processing resources. The vulnerability's severity is considered "…

Multiple security flaws have been discovered in Baxter's Internet-connected infusion pumps, which are used by healthcare professionals to dispense medication to patients in clinical settings. Infusion pumps are Internet-enabled devices to deliver…

Researchers at Proofpoint revealed that Australian government agencies and businesses had been the target of a sophisticated year-long espionage campaign. According to a Proofpoint report, the hackers are named Red Ladon or Leviathan and are closely…

The NYU Tandon School of Engineering, a global leader in engineering research and education, and the Depository Trust and Clearing Corporation (DTCC), the premier post-trade market infrastructure for the global financial services industry, have announced…

The Irish Data Protection Commission (DPC), Ireland's supervisory authority for upholding the General Data Protection Regulation (GDPR), recently fined Meta $403 million for allowing users aged 13 to 17 to operate business accounts on Instagram. Under…

The final version of the National Highway Traffic Safety Administration's (NHTSA) cybersecurity practices, which focuses on cryptographic techniques to mitigate hacking risks facing vehicles, will be published in the Federal Register. NHTSA officials…

Healthcare cyberattacks have been known to endanger patient safety and negatively impact care delivery, in addition to causing documented financial losses and reputational harm. Proofpoint commissioned Ponemon Institute to survey IT and security…

HYCU, a data protection provider, surveyed 400 technology, financial, and security leaders, finding that most organizations are better prepared to thwart a ransomware attack, with 54 percent reporting they are either mostly prepared (32 percent) or as…

The Government Accountability Office (GAO) calls on the federal government to develop and implement a comprehensive strategy to combat cyber threats to the US. In recent years, the FBI has observed Chinese state-sponsored hackers seeking to compromise…

Security researchers at Sevco Security have found that more than 10% of enterprise IT assets are missing endpoint protection, and roughly 5% are not covered by enterprise patch management solutions.  Approximately 3% of all IT assets are “stale” in…

Networking solutions provider Zyxel has recently released patches for a critical-severity vulnerability impacting the firmware of multiple network attached storage (NAS) device models.  The security defect is tracked as CVE-2022-34747 and carries a…

The Ukrainian security service (SBU) has recently found and dismantled two more Russian bot farms that were being used to spread disinformation in the war-torn country.  Based in Kyiv and Odessa, the facilities comprised around 7000 fake accounts.…