Why financial institutions must act now on DORA to ensure operational resilience. With the Digital Operational Resilience Act (DORA) finally coming into force on 17 January 2025, financial ...

A threat research team observed a campaign of suspicious activity on Fortinet FortiGate firewall devices in early December 2024. By gaining access to the management interfaces of the affected ...

Cybercriminals are abusing Microsoft Teams as a gateway for their attacks. They then try to steal data or place ransomware. They also use email bombing and voice phishing. An initial analysis by ...

SonicWall has reported a critical 9.8 vulnerability in the SMA1000 appliance. SonicWall has released a corresponding update that should be used immediately. SMA100 appliances are not affected by the ...

A report analyzed cyberattacks in 2024 and found that most attackers do not break in, but log in with stolen credentials. In addition to personal data, health information was the target of most cyber ...

Cybersecurity predictions abound each year, many of which are full of exaggerations. It makes more sense to look at data and trends that have shaped the previous year and base a forecast on that. This ...

Email security plays a central role in the cybersecurity of the entire company. Email is not only the most important communication channel in organizations, but also one of the most common attack ...

Almost two months ago, the National Institute of Standards and Technology (NIST) presented a first draft on a topic that will keep cybersecurity managers of all companies around the world busy in the ...

Many IT and security managers worry about whether their company will be able to continue operating after a cyberattack, or how quickly it will be able to do so again. Finding clean backups for ...

A pioneer in cyber security solutions takes a look at the FunkSec ransomware group from Algeria. It was the most active ransomware gang in December 2024 and claimed over 85 victims that month. Over 20 ...

Mandiant has released details of a zero-day vulnerability (CVE-2025-0282) that Ivanti disclosed and simultaneously patched, affecting its Ivanti Connect Secure VPN (“ICS”) applications. Ivanti ...

Everyone from interns to CEOs has heard the long-worn phrase “There is no such thing as 100% cybersecurity.” But as with many universally accepted sayings, the crucial question is: What does this mean ...