The Numbers Are In: Identity-Based Attacks (Still) Reign Supreme in 2022
By Greg Notch, CISO, Expel The list of challenges security professionals face will not let up, as new […] The…
Atlassian fixes critical command injection bug in Bitbucket Server
Atlassian has released updates to address critical-severity updates in its centralized identity management platform, Crowd Server and Data Center, and in Bitbucket…
Phishing kit impersonates well-known brands to target US shoppers
A sophisticated phishing kit has been targeting North Americans since mid-September, using lures focused on holidays like Labor Day and…
22 states ask feds to repeal COVID vaccine mandate for health care workers
GOP state attorneys general from 22 states are demanding the Biden administration repeal a "draconian" federal COVID vaccine mandate for…
F5 fixes two remote code execution flaws in BIG-IP, BIG-IQ
F5 has released hotfixes for its BIG-IP and BIG-IQ products, addressing two high-severity flaws allowing attackers to perform unauthenticated remote…
Nasty SQL Injection Bug in Zendesk Endangers Sensitive Customer Data
The API-related vulnerabilities put conversations, email addresses, tickets, and more in danger of exposure via the Zendesk Explore reporting service.
Chinese hackers target government agencies and defense orgs
The Chinese espionage APT (advanced persistent threat), tracked as 'Billbug' (aka Thrip, or Lotus Blossom), is currently running a 2022…
Android phone owner accidentally finds a way to bypass lock screen
Cybersecurity researcher David Schütz accidentally found a way to bypass the lock screen on his fully patched Google Pixel 6…
Cookies for MFA Bypass Gain Traction Among Cyberattackers
Multifactor authentication has gained adoption among organizations as a way of improving security over passwords alone, but increasing theft of…
The Growing Importance of VPNs
By Izzy Murphy, Reporter for TechRound There are many advantages which come from using a VPN, such as […] The…