What Do CISOs Have to Do to Meet New SEC Regulations?
As stringent new SEC reporting rules take effect, CISOs need to assess internal processes and understand their responsibilities. But there's…
News
Years-Old, Unpatched GWT Vuln Leaves Apps Open to Server-Side RCE
Although the unauthenticated Java deserialization flaw has been known since 2015, GWT apps remain vulnerable to malicious server-side code execution,…
Zero Networks Raises $20M in Series B to Prevent Attackers from Spreading in Corporate Networks
U.S. Venture Partners leads the round, CrowdStrike co-founder participating.
Akira, again: The ransomware that keeps on taking
Seven months after our first investigation, a fuller portrait of the criminal gang and its tactics emerges
CryptoGuard: An asymmetric approach to the ransomware battle
In the second of our new technical thought leadership series, Sophos X-Ops takes a detailed look at anti-ransomware techniques
Millions of Microsoft Accounts Power Lattice of Automated Cyberattacks
Crimeware-as-a-service (CaaS) gang flies past CAPTCHAs, creating fraudulent accounts to sell to the likes of Scattered Spider; Microsoft mounts a…
Adapting to the Post-SolarWinds Era: Supply Chain Security in 2024
Three years after the SolarWinds attack, new revelations show more must be done to help prevent such a drastic security…
Name That Toon: Just for Kicks
Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card.
Will Putting a Dollar Value on Vulnerabilities Help Prioritize Them?
Zoom's Vulnerability Impact Scoring System calculates the impact of a vulnerability to assign a cash payout for bugs, leading hackers…
Pro-Israeli Hacktivists Attack Iranian Gas Stations
Iranian officials blame a software issue for the "disruption" to gasoline pumps.