Researchers at Tenable discovered critical and high-severity vulnerabilities in video surveillance systems made by Exacq Technologies, which is owned by building technology giant Johnson Controls.

Forcepoint said it has reached a deal to acquire cloud security startup Bitglass. The deal is expected to close later this year. The financial terms of the deal were not disclosed.

Microsoft revoked insecure SSH keys some Azure DevOps have generated using a GitKraken git GUI client version impacted by an underlying issue found in one of its dependencies.

Olympus, a medical technology company, was forced to take down IT systems in the Americas (U.S., Canada, and Latin America) following a cyberattack that hit its network Sunday, October 10, 2021.

A new national cyber strategy will be launched by year-end, the NCSC’s chief executive has promised – while calling out spyware vendor NSO Group as a “red flag” for the UK infosec community.

Fox-IT researchers said the group typically breaches company networks via vulnerabilities in web-facing software, with several intrusions linked to the exploitation of the Telerik ASP.NET framework.

The United States Cybersecurity and Infrastructure Security Agency (CISA) last week announced the release a new guidance document: Trusted Internet Connections (TIC) 3.0 Remote User Use Case.

In a statement released on October 7, the New Mexico-based hospital said that it had launched an investigation after identifying unauthorized access to its network on September 8, 2020.

The rise in the use of so-called “stalkerware” prompted an industrywide response in recent years to combat the spread of phone monitoring apps. Now, Google has also taken steps to curb the threat.

In many cases, the groups work on an affiliate model, with the developers taking a cut of the ransom on top of the monthly payment, generally to the tune of around 20 to 50 percent.