DARKReading

An attacker is breaking into Linux systems via a widely abused 2-year-old vulnerability in Apache ActiveMQ, installing malware and then patching the flaw.

Why every company needs a clear, enforceable AI policy — now.

Noodlophile is targeting enterprises in spear-phishing attacks using copyright claims as phishing lures.

The HR giant said hackers mounted a socially engineered cyberattack on its third-party CRM system but did not gain access to customer information; only "commonly available" business contact info was exposed.

A more unified and behavior-aware approach to detection can significantly improve security outcomes.

A good chunk of all websites today have been affected by the biggest DDoS risk on the Web since 2023.

The vast majority of companies are using more than one cloud platform, yet struggle to establish and monitor security across different environments giving attackers an opening.

The new Quantum-Safe 360 Alliance will provide road maps, technology, and services to help organizations navigate the post-quantum cryptography transition before the 2030 deadline.

While several cybercrime groups have embraced "EDR killers," researchers say the deep knowledge and technical skills demonstrated by Crypto24 signify a dangerous escalation.