Ivanti’s Cloud Service Appliance Attacked via Second Vuln
The critical bug, CVE-2024-8963, can be used in conjunction with the prior known flaw to achieve remote code execution (RCE).
Citrine Sleet Poisons PyPI Packages With Mac & Linux Malware
A North Korean advanced persistent threat (APT) actor (aka Gleaming Pisces) tried to sneak simple backdoors into public software packages.
Ukraine bans Telegram on military, govt devices over security risks
Ukraine's National Coordination Centre for Cybersecurity (NCCC) has restricted the use of the Telegram messaging app within government agencies, military…
Getting Out in Front of Post-Quantum Threats with Crypto Agility
Ready or not, quantum computing technology is rapidly advancing, and its new capabilities will be available sooner than most think.…
Getting Out in Front of Post-Quantum Threats with Crypto Agility
Ready or not, quantum computing technology is rapidly advancing, and its new capabilities will be available sooner than most think.…
Iran tried to influence election by sending stolen material from Trump campaign to Biden’s camp, FBI says
Iran sent messages to people involved in Biden's re-election campaign with material from Trump's campaign as part of efforts to…
Broadcom fixes critical RCE bug in VMware vCenter Server
Broadcom has fixed a critical VMware vCenter Server vulnerability that attackers can exploit to gain remote code execution on unpatched servers via…
Protecting Against Malicious Open Source Packages
What Works and What Doesn’t A software package is the dream of reusability made possible. Individual developers and organizations of…
‘Void Banshee’ Exploits Second Microsoft Zero-Day
Attackers have been using the Windows MSHTML Platform spoofing vulnerability in conjunction with another zero-day flaw.
Unlocking Secure Communications 101: The Fundamentals
Ensuring the protection of data and communications is of utmost importance for organisations adapting to the intricacies of the digital…