Washington state is among those being targeted by a “large-scale, highly sophisticated” nationwide phishing campaign, the office of Gov. Jay Inslee said at a press conference Thursday.

Kaspersky’s report on the industrial threat landscape for the first half of 2020 reveals that the number of attacks aimed at RDP on industrial computers increased steadily between February and May.

While some researchers see Zebrocy as a separate adversary, others point at connections between various threat actors operating out of Russia, including a link between GreyEnergy and Zebrocy attacks.

Google patched a privilege escalation flaw in OS Config, a Google Cloud Platform service for Compute Engine that is designed for managing operating systems running on virtual machine instances.

CrowdStrike on Wednesday announced that it has agreed to acquire Preempt Security, a provider of Zero Trust and access control technology, in a deal valued at roughly $96 million.

The Samba team has released patches for a critical-severity elevation of privilege vulnerability impacting the Microsoft Windows Netlogon Remote Protocol (MS-NRPC).

A cybersecurity enthusiast learned recently that Airbnb accounts can be easily hijacked by creating a new account on Airbnb with a phone number that in the past belonged to another customer.

Microsoft has detailed the steps involved in the processing of vulnerability reports, so that reporting researchers know what to expect when submitting information on a bug.

German authorities probing a cyber attack on a hospital's IT system that led to a fatal delay in treatment for a critically ill woman believe the software used can be traced back to Russian hackers.

The NSA has published two cybersecurity information sheets (CSIs) with recommendations for NSS and DoD workers and system admins on securing networks and responding to incidents during the WFH period.