darkreading

Organizations need to implement these five essential security controls to safely harness the power of autonomous AI agents while still protecting enterprise assets.

The data-stealing malware initially targeted users in Turkey but has since evolved into a global threat.

But that didn't stop the clothing retailer from issuing preliminary results for the first quarter of 2025.

Digital certificates authorized by the authorities will no longer have trust by default in the browser starting in August, over what Google said is a loss of integrity in actions by the respective companies.

LummaC2 formerly accounted for almost 92% of Russian Market's credential theft log alerts. Now, the Acreed infostealer has replaced its market share.

If your CISO isn't wielding influence with the CEO and helping top leaders clearly see the flight path ahead, your company is dangerously exposed.

Edge computing and stricter regulations could usher in a new era of AI privacy.

This information-sharing hub provided essential information to the emergency services sector on physical and cyber threats. Some say the timing is concerning.

New details on the Cisco IOS XE vulnerability could help attackers develop a working exploit soon, researchers say.

An anonymous whistleblower has leaked large amounts of data tied to the alleged operator behind Trickbot and Conti ransomware.

The country will require certain organizations to report ransomware payments and communications within 72 hours after they're made or face potential civil penalties.

The unpatched security vulnerabilities in Consilium Safety's CS5000 Fire Panel could create "serious safety issues" in environments where fire suppression and safety are paramount, according to a CISA advisory.

Organizations need to abandon perimeter-based security for data-centric protection strategies in today's distributed IT environments.

The US needs to establish a clear framework to provide reasonable guardrails to protect its interests — the quicker, the better.

A "highly active" Chinese threat group is taking proverbial candy from babies, exploiting known bugs in exposed servers to steal data from organizations in sensitive sectors.

The US Treasury said cryptocurrency investment schemes like the ones facilitated by Funnull Technology Inc. have cost Americans billions of dollars annually.

AI tools shook up development. Now, product security must change too.

Apex will enhance Tenable's AI Aware tool by mitigating the threats of AI applications and tools not governed by organizations, while enforcing existing security policies.