Getting Out in Front of Post-Quantum Threats with Crypto Agility
Ready or not, quantum computing technology is rapidly advancing, and its new capabilities will be available sooner than most think.…
Zero-Click RCE Bug in macOS Calendar Exposes iCloud Data
A researcher bypassed the Calendar sandbox, Gatekeeper, and TCC in a chain attack that allowed for wanton theft of iCloud…
Windows vulnerability abused braille “spaces” in zero-day attacks
A recently fixed "Windows MSHTML spoofing vulnerability" tracked under CVE-2024-43461 is now marked as previously exploited after it was used…
Ivanti warns high severity CSA flaw is now exploited in attacks
Ivanti confirmed on Friday that a high severity vulnerability in its Cloud Services Appliance (CSA) solution is now actively exploited…
New Linux malware Hadooken targets Oracle WebLogic servers
Hackers are targeting Oracle WebLogic servers to infect them with a new Linux malware named "Hadooken," which launches a cryptominer and…
Innovator Spotlight: Salt Security
In a world where APIs have become integral to the digital and technical experience, they also represent a significant security…
Innovator Spotlight: Tanium
During my conversation with Melissa Bischoping, Senior Director of Security & Product Design Research at Tanium, she emphasized how the…
Ivanti fixes maximum severity RCE bug in Endpoint Management software
Ivanti has fixed a maximum severity vulnerability in its Endpoint Management software (EPM) that can let unauthenticated attackers gain remote…
Publishers Spotlight: Elisity
I was thrilled to catch up with Elisity during Black Hat USA 2024. Elisity’s platform makes it easy for IT,…
Protecting Your SaaS Applications – A Security Guide
An All-encompassing Approach to Prevent Breaches Organizations depend deeply on technology and data to run their businesses. The recent transition…