Internet Security

U.S. CISA adds Cisco ASA and FTD, and RoundCube Webmail bugs to its Known Exploited Vulnerabilities catalog

October 25, 2024 add comment
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Cisco ASA and FTD, and RoundCube Webmail bugs to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added... Read more »

Pwn2Own Ireland 2024 Day 2: participants demonstrated an exploit against Samsung Galaxy S24

October 24, 2024 add comment
On the second day of Pwn2Own Ireland 2024, researchers demonstrated an exploit for the Samsung Galaxy S24.  On day two of Pwn2Own Ireland 2024, hackers demonstrated attacks against 51... Read more »

Cisco fixed tens of vulnerabilities, including an actively exploited one

October 24, 2024 add comment
Cisco patched vulnerabilities in ASA, FMC, and FTD products, including one actively exploited in a large-scale brute-force attack campaign. Cisco addressed multiple vulnerabilities in Adaptive Security Appliance (ASA), Secure... Read more »

FortiJump flaw CVE-2024-47575 has been exploited in zero-day attacks since June 2024

October 24, 2024 add comment
The “FortiJump” flaw (CVE-2024-47575) has been exploited in zero-day attacks since June 2024, impacting over 50 servers, says Mandiant. A new report published by Mandiant states that the recently... Read more »

U.S. CISA adds Fortinet FortiManager flaw to its Known Exploited Vulnerabilities catalog

October 24, 2024 add comment
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Fortinet FortiManager flaw to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added the Fortinet FortiManager missing... Read more »

Digital Echo Chambers and Erosion of Trust – Key Threats to the US Elections

October 23, 2024 add comment
Resecurity reports a rise in political content related to the 2024 US elections on social media, with increased activity from foreign sources. Resecurity has detected a substantial increase in... Read more »

U.S. CISA adds Microsoft SharePoint flaw to its Known Exploited Vulnerabilities catalog

October 23, 2024 add comment
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Microsoft SharePoint flaw to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added the Microsoft SharePoint Deserialization... Read more »

Crooks are targeting Docker API servers to deploy SRBMiner

October 23, 2024 add comment
Threat actors are targeting Docker remote API servers to deploy SRBMiner crypto miners on compromised instances, Trend Micro warns. Trend Micro researchers observed attackers targeting Docker remote API servers... Read more »

Why DSPM is Essential for Achieving Data Privacy in 2024

October 23, 2024 add comment
Data Security Posture Management (DSPM) helps organizations address evolving data security and privacy requirements by protecting and managing sensitive information. Data Security Posture Management (DSPM) comes into play– an... Read more »

SEC fined 4 companies for misleading disclosures about the impact of the SolarWinds attack

October 23, 2024 add comment
The SEC fined Unisys, Avaya, Check Point, and Mimecast for misleading disclosures about the impact of the SolarWinds Orion hack. The US Securities and Exchange Commission (SEC) charged four... Read more »
Subscribe to our Newsletter