NSA, CISA release Kubernetes hardening guidance following Fancy Bear attacks
The guidance seeks to educate IT administrators about cloud security risks and best practices for implementing and maintaining Kubernetes.
The guidance seeks to educate IT administrators about cloud security risks and best practices for implementing and maintaining Kubernetes.
Under pressure to end the ransomware scourge, the White House faces strong headwinds. The problem: Putin has no motivation to change the status quo.
The successful seizure could encourage other victims to better cooperate with federal agencies and cause ransomware gangs to rethink their operations.
More permanent remote workers, requirements for protecting health data, and a more dangerous threat landscape await security teams as the COVID crisis ends.
Two-way communication between government and the private sector combined with a national breach notification policy will put a dent in cyber crime.
Though lacking in clarity, this new executive order might be more effective than past efforts, especially in the wake of the Colonial pipeline attack.
Experts weigh in on what the Colonial attack teaches critical infrastructure providers about preparation and incident response.
The Biden administration places economic sanctions on Russian government agencies, individuals, and companies including several security firms.
For some victims, patching and proper forensics will be difficult, plus new threat actors are now exploiting the same Exchange Server vulnerabilities.
State looks to protect one of its core industries, which is threatened by "unsustainable" losses due to the SolarWinds attacks.
Egregor is one of the most rapidly growing ransomware families, employing "double ransom" techniques to threaten reputational damage.
Having flown under the radar for several years, the Sprite Spider group is using a ransomware code suite that is effective and hard to detect.
Experts how that indictments against six Russian military intelligence agents will make Russia rethink plans to disrupt the US election.
SilentFade steals credentials and ad spend account information and sells the information to other bad actors.
A new report from the Carnegie Endowment for International Peace seeks to give law and policy makers a better understanding of cloud security risks.