Discover how to increase the coverage of your CodeQL CORS security by modeling developer headers and frameworks. The post Modeling CORS frameworks with CodeQL to find security vulnerabilities...
Microsoft announced that it has replaced the default scripting engine JScript with the newer and more secure JScript9Legacy on Windows 11 version 24H2 and later. [...]
Cisco Talos’ Vulnerability Discovery & Research team recently disclosed two vulnerabilities each in Asus Armoury Crate and Adobe Acrobat products.
Daniil Kasatkin played briefly for Penn State University. It’s the second European arrest on cyber allegations at the request of the United States to be revealed this week. The post French police...
The U.K.’s National Crime Agency claims the four were involved in attacks on Marks & Spencer. The cybersecurity industry attributed those attacks to Scattered Spider. The post UK arrests four for...
Russian professional basketball player Daniil Kasatkin was arrested in France at the request of the United States for allegedly acting as a negotiator for a ransomware gang. [...]
Four vulnerabilities dubbed PerfektBlue and affecting the BlueSDK Bluetooth stack from OpenSynergy can be exploited to achieve remote code execution and potentially allow access to critical...
What our customers say: Wiz named as a Gartner Customers’ Choice for CSPM
AI accelerates development— and risk shouldn't be a blocker to innovation. Bridging AppSec and CloudSec with shared context and workflows is key to keeping up.
FBI's Criminal Justice Information Services (CJIS) compliance isn't optional when handling law enforcement data. From MFA to password hygiene, see how Specops Software helps meet FBI standards...
As clashes continue in the Middle East, who are the cyber actors to be aware of?
The UK's National Crime Agency (NCA) arrested four people suspected of being involved in cyberattacks on major retailers in the country, including Marks & Spencer, Co-op, and Harrods. [...]
The UK's National Crime Agency (NCA) arrested four people suspected of being involved in cyberattacks on major retailers in the country, including Marks & Spencer, Co-op, and Harrods. [...]
The cybersecurity spotlight hasn’t shifted from Microsoft for most of 2021. The latest in a string of critical security issues is a vulnerability in Microsoft Azure’s flagship Cosmos DB Database.
Saudi Arabian oil giant, Aramco, is currently battling a cyber-extorsion campaign involving a $50 million ransom and 1 terabyte of leaked company data.
Canada Post has suffered a data breach impacting 44 of its business clients which lead to 950,000 receiving customers being compromised.
Acer has suffered a $50 million ransomware attack
Oxfam Australia has suffered a data leak impacting 1.8 million donors.
Clubhouse, the audio-only social networking app, has suffered a data leak
Kroger is the latest addition to a growing list of victims impacted by the cyber attack against the file transfer solution, Accellion.
Wilmington Surgical Associates is facing a lawsuit for its cybersecurity negligence that resulted in a data breach.
Singtel has been impacted by a third-party attack against its vendor Accellion.
An attacker breached a water treatment facility, adding a lethal injection of Sodium Hydroxide.
Nissan North America has suffered a data breach exposing the source codes of its mobile apps and internal software solutions.
The Australian Security and Investments Commission has been impacted by Accellion's data breach
The records of every Tasmanian that has requested an ambulance since November 2020 has been published online.
Spotify has suffered its third data breach in the space of a few weeks.
BioNTech-Pfizer vaccine data has been breached while in possession by the European Medicines Agency.
FireEye, a global cyber threat defense agency, has fallen victim to the most machiavellian cyberattack of 2020.
Swiss helicopter company Kopter has suffered a data breach by the ransomware group LockBit.