Black Hat Asia: Firmware Supply-Chain Woes Plague Device Security
The supply chain for firmware development is vast, convoluted, and growing out of control: patching security vulnerabilities can take up…
Ready, IAM, Fire: How Weak IAM Makes You a Target
Proper identity and access management configuration serves as an effective starting point for organizations looking to secure their cloud infrastructure.
5 Key Learnings from Intel’s 2021 Product Security Report
By Jerry Bryant, Senior Director of Security Communications and Incident Response at Intel As security threats continue to […] The…
Conti, REvil, LockBit ransomware bugs exploited to block encryption
Hackers commonly exploit vulnerabilities in corporate networks to gain access, but a researcher has turned the table by finding exploits…
How Industry Leaders Should Approach Open Source Security
Here's how to reduce security risk and gain the benefits of open source software.
New Nimbuspwn Linux vulnerability gives hackers root privileges
A new set of vulnerabilities collectively tracked as Nimbuspwn could let local attackers escalate privileges on Linux systems to deploy…
CISA adds 7 vulnerabilities to list of bugs exploited in attacks
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added seven vulnerabilities to its list of actively exploited security issues, including…
9 Ways Social Media Sabotages Your Cybersecurity
By Alex Lysak, CEO of Scanteam Social media has become one of the most common ways to spend […] The…
Early Discovery of Pipedream Malware a Success Story for Industrial Security
Cybersecurity professionals discovered, analyzed, and created defenses against the ICS malware framework before it was deployed, but expect the stakes…
Microsoft Exchange servers hacked to deploy Hive ransomware
A Hive ransomware affiliate has been targeting Microsoft Exchange servers vulnerable to ProxyShell security issues to deploy various backdoors, including Cobalt Strike…