Microsoft closed out the year with 1,139 total defects patched, making it the second-largest year in volume behind 2020, according to Trend Micro.

A debate over actual exploitation is muddying response efforts. Multiple researchers say they’ve observed working proof of concepts while others assert evidence of attacks is lacking.

The open-source code library is one of the most extensively used application frameworks. Wiz found vulnerable versions in around 39% of cloud environments.

The Ivy League school said it was one of almost 100 organizations hit by the simultaneous attacks in August.

The company’s latest security update contains the second-highest number of defects patched so far this year.

Despite years of effort to make software safer and more transparent with SBOMs, the rise of AI coding assistants is fueling optimism—and, some experts argue, “kind of…

Officials shared indicators of compromise observed as recently as this month to help organizations hunt for and defend against the ransomware group, which has pocketed $244 million…

Researchers say the nation-state attacker could cause more serious problems with the BIG-IP source code it nabbed during the attack on F5’s systems.

The tech giant didn’t report active exploitation of any of the patched defects, yet details about potential impacts remain limited.

The networking software and security company claims most customers are not concerned about their configuration data stolen during the attack.