A research project into vulnerabilities affecting Microsoft’s PlayReady DRM raises some questions on responsible disclosure.

Ivanti’s Connect Secure VPN is vulnerable to a critical-severity zero-day vulnerability that has been exploited in attacks as ...

ADX's distribution policy has been updated and investors should be able to experience more consistent quarterly payouts. See ...

Ivanti confirms zero-day exploitation of a remotely exploitable code execution vulnerability (CVE-2025-0282) in its Connect ...

Last year we made some predictions about 2024’s cyber landscape and major issues. Several proved prescient, with incident reporting, CISO ...

Adobe recently issued a patch for a high-severity vulnerability for ColdFusion versions 2023.11 and 2021.17 and earlier; according to the ...

Two Democratic lawmakers in Congress are seeking further information about a new U.S. judiciary policy governing when U.S. Supreme Court justices and other federal judges must publicly disclose travel ...

The Apache Software Foundation (ASF) has released a security update to address an important vulnerability in its Tomcat server ... CVE-2024-56337 with a proof-of-concept (PoC) code. The disclosure ...

Adobe has released out-of-band security updates to address a critical ColdFusion vulnerability with proof-of-concept (PoC) exploit code. In an advisory released on Monday, the company says the ...

In December 2024, China introduced a Basic Standards of its Corporate Sustainability Disclosure Standards ... while Beijing focused on developing policy frameworks and establishing ESG rating systems.

In a new proof-of-concept, endpoint security provider Morphisec showed that the Exploit Prediction Scoring System (EPSS), one of the most widely used frameworks for assessing vulnerability exploits, ...

All those business interests benefit from government cooperation and can be harmed by unfavorable policy choices. Trump can threaten these owners because he mostly does not care about policy for ...