VMware has released temporary workarounds to address a critical vulnerability in its products that could be exploited by an attacker to take control of an affected system.

vpnMentor’s research team has discovered a possible credential stuffing operation whose origins are unknown, but that affected some online users who also have Spotify accounts.

As 2020 nears its end, CISOs and infosec teams are expected to prepare board and C-suite briefings on the state of their organization’s cybersecurity posture, including a comprehensive 2021 budget.

CyberArk announced it is working with Forescout and Phosphorus to enable organizations to secure the increasing number of IoT devices and technologies resulting from digital business transformation.

A GBG study revealed that a third of consumers have become more concerned about fraud due to COVID-19 and 33% of the public believe their personal information is currently for sale on the dark web.

A recent review by the NCC Group and Which? of nearly a dozen inexpensive video doorbells sold via online markets such as Amazon and eBay uncovered multiple security vulnerabilities in each device.

Companies should plan their future workforce model now, so they have time to implement the necessary tools, including cybersecurity and seamless remote access, a Forrester report says.

The attack brought the Superior Electoral Court’s systems to a standstill for over two weeks and is the most comprehensive in complexity and extension of the damage caused.

Chinese APT group TA416, whose previous activity has been attributed to “Mustang Panda” and “RedDelta,” has resumed attack activity following a brief hiatus, Proofpoint researchers report.

The Inspector General for the State Department, in its annual management and performance audit released last week, concluded the agency has taken steps to improve information security.