CISA warns admins to patch maximum severity SAP vulnerability
The US Cybersecurity and Infrastructure Security Agency (CISA) has warned admins to patch a set of severe security flaws dubbed ICMAD (Internet…
Log4j and the Role of SBOMs in Reducing Software Security Risk
Enterprises are spending a pittance on securing their software supply chain, which makes COTS software dangerous — vulnerabilities can be…
Qualys Launches Context XDR
Qualys Context XDR provides the security context that operations teams need to eliminate false positives and noise by triangulating risk…
Salesforce DevOps Needs Guardrails
Some companies go too fast when it comes to SaaS, DevOps, and security, but smart developers and implementers will respect…
Log4j: Getting From Stopgap Remedies to Long-Term Solutions
This pervasive vulnerability will require continued care and attention to fully remediate and detect permutations. Here are some ways to…
The Week in Ransomware – February 4th 2022 – Critical Infrastructure
Critical infrastructure suffered ransomware attacks, with threat actors targeting an oil petrol distributor and oil terminals in major ports in…
How Criminals Have Migrated Through Identity Theft and Privacy into Cyber Attacks
By P. William Zivanchev, Executive Director, Institute of Consumer Financial Education Introduction At first glance, readers may wonder […] The…
Menlo Security Finds Cloud Migration and Remote Work Gives Rise to New Era of Malware, Highly Evasive Adaptive Threats (HEAT)
Menlo identified 224% increase in HEAT attacks in the last six months fueling ransomware surge.
ESET antivirus bug let attackers gain Windows SYSTEM privileges
Slovak internet security firm ESET released security fixes to address a high severity local privilege escalation vulnerability affecting multiple products on…