Orgs Scramble to Fix Actively Exploited Bug in Apache Struts 2
A newly discovered vulnerability, CVE-2024-53677, in the aging Apache framework is going to cause major headaches for IT teams, since…
Vendors Chase Potential of Non-Human Identity Management
Non-human identities authenticate machine-to-machine communication. The big challenge now is to secure their elements and processes — before attackers can…
Generative AI Security Tools Go Open Source
Businesses deploying large language models and other GenAI systems have a growing collection of open source tools for testing AI…
Open Source Security Priorities Get a Reshuffle
The "Census of Free and Open Source Software" report, which identifies the most critical software projects, sees more cloud infrastructure…
The Evolution of Cloud Strategy: Beyond “Cloud First”
In the rapidly evolving digital landscape, the mantra “Cloud First” is becoming a relic of the past. Today, organizations are…
Russian Script Kiddie Assembles Massive DDoS Botnet
Over the past year, "Matrix" has used publicly available malware tools and exploit scripts to target weakly secured IoT devices…
News Desk 2024: Can GenAI Write Secure Code?
GenAI's 30%-50% coding productivity boost comes with a downside — it's also generating vulnerabilities. Veracode's Chris Wysopal talks about what…
Israel Defies VC Downturn With More Cybersecurity Investments
With a focus on creating technologies for other markets, Israel continues to be a valued destination for venture capital in…
‘RomCom’ APT Mounts Zero-Day, Zero-Click Browser Escapes in Firefox, Tor
The innocuously named Russian-sponsored cyber threat actor has combined critical and serious vulnerabilities in Windows and Firefox products in a…
AWS Rolls Out Updates to Amazon Cognito
Amazon Web Services' identity and access management platform has added new features that help developers implement secure, scalable, and customizable…