Security news aggregator

Latest coverage for Report

Reports provide structured accounts of cyber incidents, vulnerabilities, and controls, helping readers assess security risks and responses.

229 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

A report is a documented account of an event, investigation, assessment, or analysis, supported by evidence and presented for others to review. In information security, the term commonly covers incident findings, vulnerability research, threat-intelligence assessments, audit results, and surveys of security practices. A useful report states its scope, methods, evidence, timeframe, and level of confidence rather than presenting conclusions without context.

Reports help practitioners prioritize remediation, validate controls, and improve incident response, but their details require careful interpretation. A vulnerability report should identify affected versions, exploit conditions, and mitigation steps; an incident report should distinguish confirmed facts from assumptions and protect sensitive personal or investigative data. Threat reports may contain indicators of compromise that need verification before being used in detection systems. Reports used for compliance or executive decisions should preserve a clear evidence trail, since incomplete scope, outdated findings, or undisclosed conflicts can lead to misplaced security priorities.

Volume over time

Weekly headline count for the current query.

Showing 20 most recent headlines of 229 Filtered view
Bank Info Security 21 hours, 24 minutes ago

ISMG Pulse Report: The AI Tsunami

Infosecurity 2026: What Security Leaders Agree on as AI Reshapes Enterprise RiskAI has broken the speed of attack, but not the fundamentals of defense. Drawing on interviews with security leaders at Infosecurity Europe 2026, ISMG's Pulse Report explores the collapse of the vulnerability window, rise of AI agents, erosion of digital trust and disciplines that matter most.

Bank Info Security 1 month, 2 weeks ago

CISA Town Halls Set Final Stage for CIRCIA Debate

June Meetings Could Shape Which Entities Must Report Cyber IncidentsThe Cybersecurity and Infrastructure Security Agency's June town halls will give critical infrastructure operators a final opportunity to influence how the agency defines covered entities, reportable incidents and compliance requirements before issuing long-awaited CIRCIA regulations.

Bank Info Security 1 month, 3 weeks ago

Responding to Breaches With AI? Beware Cross-Contamination

Separate Breach Details Can Bleed Into Each Other, Incident Responders FindCybersecurity investigators who use artificial intelligence tools to draft incident response reports, beware: Information tied to one security incident can contaminate a report into a separate incident, if both get drafted using the same AI tool in the same session, researchers warn.

Bank Info Security 1 month, 4 weeks ago

Verizon Breach Report: Vulnerability Exploitation Surges

Patch Rollout Slows and Ransomware Incident Volume Rises, Finds Latest Verizon DBIRThe frequency of hackers exploiting vulnerabilities in hardware and software to gain initial access to a victim's environment continues to surge, and half of all successful breaches also now involve some type of "ransomware action," according Verizon's 2026 Data Breach Investigations Report.

Déjà Vu: Is Mythos in Hands of Bad Actors Akin to Cobalt Strike, Brute Ratel Abuse?Anthropic's Claude Mythos and similarly powerful artificial intelligence tools pose elevated cyber risk to the healthcare sector, warns a new report. Addressing the onslaught of newly discovered bugs will require healthcare organizations to evolve their vulnerability mindsets.

New Report Warns China Could Reach Frontier AI Near-Parity by 2028Anthropic warned that weak chip export controls, model distillation and expanded Chinese access to advanced compute infrastructure could erode Washington’s frontier AI advantage and accelerate Beijing’s push toward near-parity in advanced AI systems.

Bank Info Security 2 months, 3 weeks ago

Report: Discord Group Uses Claude's Supposedly Secret Mythos

AI Enthusiasts Haven't Used Model to Probe for Vulns, Source Tells BloombergAn unauthorized group of users gained access to Claude Mythos Preview artificial intelligence model and have regularly used it since the day that AI firm Anthropic revealed the model's existence while pronouncing it too dangerous to release to the public, reports Bloomberg.

Bank Info Security 3 months ago

CISA Workers Recalled Despite Shutdown

Congressional Funding Standoff Still UnresolvedThe Cybersecurity and Infrastructure Security Agency has told furloughed workers to report to work despite an ongoing funding lapse. U.S. DHS officials in recent days directed all furloughed personnel to return to work on their next scheduled shift, amid increasing concerns from cybersecurity analysts.

Bank Info Security 3 months, 2 weeks ago

One-Time Passcodes Are Gateway for Financial Fraud Attacks

Report Reveals Growing Trend of Fraudsters Intercepting SMS-Based VerificationFinancial institutions have historically relied on one-time passcodes as a primary authentication control for their accountholders. But OTP verification is less reliable as fraudsters increasingly exploit SMS-based verification weaknesses to carry out account takeover and payment fraud schemes.

Bank Info Security 3 months, 2 weeks ago

When Liability Turns the CISO Into the Fall Guy

Rising Liability Risks Are Reshaping the CISO Role and Cybersecurity LeadershipAs regulators pursue accountability after major breaches, CISOs face growing personal liability. This is changing how security leaders report risk, weakening security culture and making the role less attractive to experienced practitioners.

Also: the Pentagon-Anthropic AI Legal Showdown, the New Reality of Document FraudIn this week's panel, four ISMG editors discuss the cyber activity tied to the U.S.-Israel-Iran conflict, the Pentagon's standoff with AI firm Anthropic and a new report that reveals how document fraud reflects deeper weaknesses in verification systems.

Revenue From Data-Extortion-Only Attacks Appear to Have Plummeted to Virtually NilWhile ransomware continues to disrupt businesses, thankfully some shakedown strategies are losing steam. The latest ISMG Security Report reviews how criminals have continued to refine the ransomware business model and why once-successful strategies for maximizing illicit profits now fall short.

Bank Info Security 4 months, 3 weeks ago

North Korean Hackers Continue to Target US Healthcare

Report: Lazarus Group Pivoting to Medusa Ransomware for Extortion AttacksNorth Korean-state backed Lazarus Group hackers are using Medusa ransomware in extortion attacks on U.S. healthcare entities despite a 2024 U.S. indictment of Rim Jong Hyok, an alleged member of the Lazarus subgroup Stonefly, according to a new threat intelligence report.

Bank Info Security 4 months, 4 weeks ago

Audit Finds Security Weaknesses at VA Spokane Medical Center

Access, Vulnerability Management, Configuration LapsesA federal watchdog agency inspection of information security at the VA health system in Spokane, Wash. last year found deficiencies across three areas - configuration management, vulnerability management and access controls - that could potentially put sensitive data at risk, a new report said.

Malware Campaign Uses Lures With Positive Portrayal of Anti-Tehran ProtestsA new malware campaign is using a positive-sounding report into the recent protests in Iran, accompanied by real photos and videos, as lures in an apparent cyberespionage operation designed to conduct surveillance of dissident researchers and global communities, warn security researchers.

New HHS Enforcement Program Focuses on Patient Confidentiality, Aligning With HIPAAThe U.S. Department of Health and Human Services has launched a new breach reporting website and guidance materials to support its duties of enforcing compliance mandates that went into effect Monday to better align the confidentiality of substance use disorder records with the HIPAA privacy rule.

Review Finds Access Control, Incident Response Gaps for 2 DHHS Data RepositoriesA lack of access controls, poor record request handling, weak incident response plans and other security deficiencies related to two critical data repositories are potentially putting millions of Utahans sensitive personal and health information at risk, said a state audit report.

Loading more headlines...