Researchers with Seattle-based Protect AI plan to release a free, open source tool that can find zero-day vulnerabilities in Python codebases with the help of

in brief A critical security update for the near-ubiquitous WordPress plugin Jetpack was released last week. Site administrators should ensure the latest version is installed

An Alabama man faces five years in prison for allegedly attempting to manipulate the price of Bitcoin by pwning the US Securities and Exchange Commission’s

Intel has responded to Chinese claims that its chips include security backdoors at the direction of America’s NSA. The accusations were made earlier this week

Video The average time it takes attackers to weaponize a vulnerability, either before or after a patch is released, shrank from 63 days in 2018-2019

ESET denies being compromised after an infosec researcher highlighted a wiper campaign that appeared to victims as if it was launched using the Slovak security

A critical bug in Kubernetes Image Builder could allow unauthorized SSH access to virtual machines (VMs) thanks to default credentials being included during the image

Intel has responded to Chinese claims that its chips include security backdoors at the direction of America’s NSA. The accusations were made earlier this week

Intel has roundly rebutted Chinese accusations that its chips include security backdoors at the direction of the US National Security Agency (NSA). The accusations were

It’s a pattern cropping up more and more frequently: a company fills an IT contractor post, not realizing it’s mistakenly hired a North Korean operative.

The US has placed a $10 million bounty on Russian media network Rybar and a number of its key staffers following alleged attempts to sway

US insurance provider Globe Life, already grappling with legal troubles, now faces a fresh headache: an extortion attempt involving stolen customer data. In a report

Brazilian police are being cagey with the details about the arrest of a person suspected to be responsible for various high-profile data thefts. The policia

Messaging giant WeChat uses a network protocol that the app’s developers modified – and by doing so introduced security weaknesses, researchers claim. WeChat uses MMTLS, a

Hacktivist gang Anonymous Sudan appears to have lost its anonymity after the US Attorney’s Office on Wednesday unsealed an indictment identifying two of its alleged

A US government contractor will settle claims it violated cybersecurity rules prior to a breach that compromised Medicare beneficiaries’ personal data. Virginia-based ASRC Federal Data

A critical bug in Kubernetes Image Builder could allow unauthorized SSH access to virtual machines (VMs) due to default credentials being enabled during the image

A critical, hardcoded login credential in SolarWinds’ Web Help Desk line has been exploited in the wild by criminals, according to the US Cybersecurity and