Security vulnerabilities stories
Cybercriminals increasingly exploit trusted apps, says report
Last week
#
firewalls
#
ransomware
#
network security
A new report reveals a 51% rise in cybercriminals exploiting trusted Microsoft applications, highlighting increasing sophistication in attacks on Windows networks.
Upwind launches Shift Left to enhance build-time security
This month
#
cx
#
martech
#
application security
Upwind has launched its Shift Left capability, enhancing CI/CD pipelines by integrating runtime context to help developers prioritise vulnerabilities.
Tenable unveils autonomous solution for patch management
This month
#
cloud security
#
it automation
#
risk & compliance
Tenable has launched Tenable Patch Management, an autonomous solution designed to streamline vulnerability remediation amid increasing cyber threats.
December Patch Tuesday reveals 70 vulnerabilities
This month
#
ransomware
#
iam
#
microsoft
This December, Microsoft addresses 70 vulnerabilities, including 16 critical remote code execution flaws, in its latest Patch Tuesday update.
Lineaje report reveals open source vulnerabilities rise
This month
#
malware
#
cybersecurity
#
microsoft
A new report by Lineaje reveals that over 95% of security vulnerabilities stem from open-source dependencies, highlighting critical risks for organisations.
Semperis unveils Lightning Intelligence for identity security
This month
#
saas
#
cloud security
#
cybersecurity
Semperis has unveiled Lightning Intelligence, a new SaaS solution to enhance identity security for hybrid Active Directory and Entra ID systems.
Veracode unveils new AI-driven features for Veracode Fix
This month
#
hyperscale
#
application security
#
risk & compliance
Veracode has unveiled enhancements to its AI-powered coding solution, Veracode Fix, aiming to cut vulnerability remediation time drastically.
Tamnoon partners with Wiz to boost cloud threat detection
This month
#
cloud security
#
advanced persistent threat protection
#
multi-cloud
Tamnoon has partnered with Wiz to launch the Wiz Defend solution, enhancing cloud threat detection and empowering security teams with advanced insights.
Cloudsmith launches new suite to enhance software security
This month
#
devops
#
apm
#
software development
Cloudsmith has unveiled its Advanced Observability Suite, enhancing software artifact visibility and security compliance for European organisations.
Experts warn of cyber risks as Black Friday approaches
Last month
#
data privacy
#
cloud services
#
av
As Black Friday and Cyber Monday approach, experts warn shoppers to be vigilant against rising cyber threats like malvertising and online fraud.
ASX 200 report reveals cybersecurity risks in retail sector
Last month
#
firewalls
#
encryption
#
network security
A new report reveals alarming cybersecurity vulnerabilities in Australia's ASX 200 Consumer Discretionary sector, exposing major companies to increased breach risks.
Automation could save network professionals 50% of time
Last month
#
firewalls
#
network security
#
breach prevention
A report from Skybox Security reveals that network professionals could reclaim 50% of their time by automating tasks currently bogging them down.
Study finds 53% of paid Android VPNs leak user data
Last month
#
data protection
#
google
#
data sharing
A study by Top10VPN.com reveals over 50% of paid Android VPN apps leak user data, highlighting significant security flaws in popular services.
Tenable discovers vulnerabilities in IaC & PaC platforms
Last month
#
malware
#
endpoint protection
#
cloud security
Tenable's Cloud Security Research team has uncovered critical vulnerabilities in policy-as-code frameworks, escalating risks of data breaches and leaks.
Critical needrestart vulnerabilities found in Ubuntu Servers
Last month
#
malware
#
cybersecurity
#
ubuntu
The Qualys Threat Research Unit has identified five critical vulnerabilities in needrestart used by Ubuntu Servers, risking unauthorized root access for users.
eBPF Foundation unveils security threat model & audit
Last month
#
supply chain & logistics
#
open source
#
cybersecurity
The eBPF Foundation has unveiled two reports on eBPF security, including a threat model and a verifier code audit, aiming to enhance safe deployment.
November Patch Tuesday reveals 90 vulnerabilities
Last month
#
cybersecurity
#
microsoft
#
internet explorer
Microsoft is rolling out patches for 90 vulnerabilities this November, including critical remote code execution flaws and several in-the-wild exploits.
Androxgh0st botnet expands with Mozi IoT capabilities
Last month
#
datacentre infrastructure
#
iot
#
advanced persistent threat protection
CloudSEK warns that the Androxgh0st botnet has significantly expanded its reach, now targeting critical vulnerabilities in various systems and IoT devices.
HackerOne report reveals AI risks dominate security concerns
Last month
#
blockchain
#
online services
#
security vulnerabilities
The latest Hacker-Powered Security Report reveals 48% of security professionals cite AI as their top threat, amid a surge in AI-related vulnerabilities.
Symbiotic Security secures $3m to boost shift-left strategy
Last month
#
it training
#
cybersecurity
#
software development
Symbiotic Security has secured USD $3 million in pre-seed funding to launch a software that enhances security during the software development process.