CSAâs CCM includes cloud security monitoring and logging controls. Implement effective incident response, audit log security, clock synchronization, and more.
Tea app data theft scandal worsens as stolen IDs leaked to cybercriminal forum
Makers of the app for women called Tea are continuing to respond to an intrusion into a "legacy data storage system" that exposed photos of users, including images of driver's licenses.
Microsoft SharePoint Zero-Day - Schneier on Security
Chinese hackers are exploiting a high-severity vulnerability in Microsoft SharePoint to steal data worldwide: The vulnerability, tracked as CVE-2025-53770, carries a severity rating of 9.8 out of a possible 10. It gives unauthenticated remote access to SharePoint Servers exposed to the Internet. Starting Friday, researchers began warning of active exploitation of the vulnerability, which affects SharePoint Servers that infrastructure customers run in-house. Microsoftâs cloud-hosted SharePoint Online and Microsoft 365 are not affected. Hereâs...
Best CompTIA Network+ Cheat Sheet (Updated for N10-009 Exam)
Overloaded by the latest Network+ certification study materials? This CompTIA Network+ cheat sheet is for youâget your copy now and ace the exam fast.
Social engineering attack obtains data on âmajorityâ of Allianz Life customers
Minneapolis-based Allianz Life said âa malicious threat actor gained access to a third-party CRM systemâ earlier in July, breaching data of a large amount of its customers.
U.S. Strikes on Iran Could Trigger Cyber Retaliation | CSA
Recent global events highlight the need to look at computer networks as an adversary would. AI tools are lowering the bar for hacktivists hoping to wreak havoc.
We are pleased to openly share our pledges and the progress we are making in each of the seven core pillars of product security in the Secure by Design framework
Scattered Spider is running a VMware ESXi hacking spree
Scattered Spider hackers have been aggressively targeting virtualized environments by attacking VMware ESXi hypervisors at U.S. companies in the retail, airline, transportation, and insurance sectors.
Post SMTP plugin flaw exposes 200K WordPress sites to hijacking attacks
More than 200,000 WordPress websites are using a vulnerable version of the Post SMTP plugin that allows hackers to take control of the administrator account.
Allianz Life confirms data breach impacts majority of 1.4 million customers
Insurance company Allianz Life has confirmed that the personal information for the "majority" of its 1.4 million customers was exposed in a data breach that occurred earlier this month.