241 npm and PyPI packages caught dropping Linux cryptominers
More than 200 malicious packages were discovered infiltrating the PyPI and npm open source registries this week. These packages are…
CISA adds 7 vulnerabilities to list of bugs exploited by hackers
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added seven vulnerabilities to its list of bugs actively exploited by…
China’s APT41 Embraces Baffling Approach for Dropping Cobalt Strike Payload
The state-sponsored threat actor has switched up its tactics, also adding an automated SQL-injection tool to its bag of tricks…
5 Russia-Linked Groups Target Ukraine in Cyberwar
Information on the attributed cyberattacks conducted since the beginning of the Russia-Ukraine war shows that a handful of groups conducted…
Janet Jackson’s music video is now a vulnerability for crashing hard disks
Janet Jackson's Rhythm Nation music video of 1989 has officially been declared a security vulnerability as it freezes some models…
Zero Trust: Security Model for A Fluid Perimeter
By Debanjali Ghosh, Technical Evangelist, ManageEngine The concept of a network being fully enclosed within a building, and […] The…
Exploit out for critical Realtek flaw affecting many networking devices
Exploit code has been released for a critical vulnerability affecting networking devices with Realtek's RTL819x system on a chip (SoC),…
New MailChimp breach exposed DigitalOcean customer email addresses
DigitalOcean is warning customers that a recent MailChimp security breach exposed the email addresses of some customers, with a small…
Securing Your Organization During Global Turmoil
Repelling Cyber Criminals Trying to Capitalize on a Crisis By Kevin Orr, President, RSA Federal Current geopolitical crises […] The…
Most Q2 Attacks Targeted Old Microsoft Vulnerabilities
The most heavily targeted flaw last quarter was a remote code execution vulnerability in Microsoft Office that was disclosed and…