Dark Reading

Four RCE vulnerabilities in Confluence, Jira, and other platforms, allow instance takeover and environment infestation.

Igor Tsyganskiy inherits the high-profile CISO spot in Redmond, while his predecessor, Bret Arsenault, is named chief security adviser.

Adobe patched CVE-2023-26360 in March amid active exploit activity targeting the flaw.

Austul USA, a military contractor, alerts law enforcement it quickly mitigated a recent cyberattack on its systems and that an investigation is ongoing.

Black Hat researchers show top password managers on Android mobiles are prone to leak passwords when using WebView autofill function.

Various devices remain vulnerable to the bug, which has existed without notice for years and allows an attacker to control devices as if from a Bluetooth keyboard.

Worries over crypto's defenselessness against quantum computing has inspired a project that automates the discovery of insecure cryptographic algorithms in open source software.

The NCSC's Ollie Whitehouse criticizes security vendors for actively working against organizations in their fight against breaches and ransomware.

Despite a focus on the future, there's no indication of how well the cybersecurity basics needed to stay safe are being applied.

Trusted relationships and global collaboration are essential to improve collective knowledge, drive resilience, and mitigate international security risks.

Increasingly, businesses are concerned about the speed of their cloud incident response times.