Why CIOs Should Report to CISOs
If the CISO is responsible for the security of the organization, then that same person also should be responsible for…
Creating the Next Generation of Secure Developers
Helping management prioritize developer education is a tall order, but it's one the industry must figure out.
BleepingComputer’s most popular cybersecurity and tech stories of 2021
2021 is over, and we can look forward to a hopefully healthier, safer, and more normal 2022. However, it was…
Netgear leaves vulnerabilities unpatched in Nighthawk router
Researchers have found half a dozen high-risk vulnerabilities in the latest firmware version for the Netgear Nighthawk R6700v3 router. At…
A Year in Microsoft Bugs: The Most Critical, Overlooked & Hard to Patch
Severe flaws in Microsoft Exchange and Windows Print Spooler stood out amid a wide range of vulnerabilities security teams were…
Apple fixes macOS security flaw behind Gatekeeper bypass
Apple has addressed a macOS vulnerability that unsigned and unnotarized script-based apps could exploit to bypass all macOS security protection…
‘Hack DHS’ bug bounty program expands to Log4j security flaws
The Department of Homeland Security (DHS) has announced that the 'Hack DHS' program is now also open to bug bounty…
Log4j Reveals Cybersecurity’s Dirty Little Secret
Once the dust settles on Log4j, many IT teams will brush aside the need for the fundamental, not-exciting need for…
NVIDIA discloses applications impacted by Log4j vulnerability
NVIDIA has released a security advisory detailing what products are affected by the Log4Shell vulnerability that is currently exploited in…
PYSA ransomware behind most double extortion attacks in November
Security analysts from NCC Group report that ransomware attacks in November 2021 increased over the past month, with double-extortion continuing…