The Future of Cybersecurity in SaaS
By Sean Malone, Chief Information Security Officer, Demandbase Security for Software-as-a-Service (SaaS) solutions has been a priority since […] The…
Threat Actor Phishing PyPI Users Identified
"JuiceLedger" has escalated a campaign to distribute its information stealer by now going after developers who published code on the…
Skyrocketing IoT Bug Disclosures Put Pressure on Security Teams
The expanding Internet of Things ecosystem is seeing a startling rate of vulnerability disclosures, leaving companies with a greater need…
Over 1,000 iOS apps found exposing hardcoded AWS credentials
Security researchers are raising the alarm about mobile app developers relying on insecure practices that expose Amazon Web Services (AWS)…
Google launches open-source software bug bounty program
Google will now pay security researchers to find and report bugs in the latest versions of Google-released open-source software (Google…
Highlighting What should be Patched First at the Endpoint
FortiGuard Labs has released its Global Threat Landscape Report for the first half of 2022. This valuable report offers insights…
CISA is warning of high-severity PAN-OS DDoS flaw used in attacks
A recent vulnerability found in Palo Alto Networks' PAN-OS has been added to the catalog of Known Exploitable Vulnerabilities from…
Patch Madness: Vendor Bug Advisories Are Broken, So Broken
Duston Childs and Brian Gorenc of ZDI take the opportunity at Black Hat USA to break down the many vulnerability…
Anonymous poop gifting site hacked, customers exposed
ShitExpress, a web service that lets you send a box of feces along with a personalized message to friends and…
Sounding the Alarm on Emergency Alert System Flaws
The Department of Homeland Security (DHS) is urging states and localities to beef up security around proprietary devices that connect…