Open source software (OSS) is a prime target for supply chain cyberattacks and protecting it remains a major challenge.

Google has released Chrome 132 with fixes for 16 vulnerabilities, including multiple high-severity security defects.

Nvidia, Zoom, and Zyxel have released patches for multiple high-severity vulnerabilities across their products.

The US, Japan, and South Korea say North Korean hackers stole roughly $660 million in cryptocurrency last year.

Ivanti has released patches for multiple vulnerabilities in Endpoint Manager (EPM), including four critical-severity flaws.

Fortinet patches critical vulnerabilities, including a zero-day that has been exploited in the wild since at least November ...

Schneider Electric, Siemens, CISA, and Phoenix Contact have released January 2025 Patch Tuesday ICS security advisories.

Ivanti VPNs are still exposed to attacks exploiting a recent vulnerability tracked as CVE-2025-0282 and Nominet has been ...

According to Adobe’s documentation, the Photoshop update is available for Windows and macOS and should be treated with ...

Microsoft has rushed out fixes for a trio of already-exploited zero-day vulnerabilities in the Windows Hyper-V platform.

A ransomware group tracked as Codefinger is using compromised AWS keys to encrypt S3 bucket data using SSE-C. A threat actor has been observed abusing compromised AWS keys to encrypt data in S3 ...

President Biden signed an executive order on artificial intelligence that seeks to ensure the infrastructure needed for advanced AI operations.