Security vulnerabilities stories - Page 11

The Secureworks Counter Threat Unit (CTU) has uncovered a subgroup of Iranian Cobalt Mirage using GitHub to store and deploy malware.

Identified as UNC4191, this cyber espionage threat leverages USB devices as an initial infection vector, concentrates on the Philippines, and has a China nexus.

ASX 200 companies have a good security posture, on-par with global counterparts, according to a new report by Rapid7.

Rapid7 showcases new capabilities at AWS re:Invent 2022 to make cloud detection and response and vulnerability assessments easier.

Data security and analytics pioneer Varonis Systems has launched its public vulnerability disclosure program through HackerOne.

Forescout’s Vedere Labs disclosed an update to its OT:ICEFALL study distributed in June 2022, which detailed vulnerabilities found in thousands of OT devices.

Global security manufacturer Gallagher has been awarded the Security Software Manufacturer of the Year accolade at the 2022 Security & Fire Excellence Awards.

It’s highly likely that Application Portfolio Management (APM) isn’t at the top of your to-do list. It may not even be on your list anymore.

The GSSH is a short, broad, easily-understood safe harbour statement that’s simple for customers to adopt, HackerOne states.

With the ever-increasing rise in cyber crime, Genetec is cautioning organisations of all sizes to be vigilant about the cybersecurity risk.

Varonis helped solve an SQLi vulnerability and an access control flaw in Zendesk Explore that would have allowed a threat actor to leak data.

Aqua Security launches Lightning Enforcer, an eBPF-based technology that provides real-time protection against zero-day attacks.

Organisations often combat threats by placing too much emphasis on technology alone and too little emphasis on people and their behaviour.

Apache's watchTowr Platform has identified dangerous string interpolation operators that could be abused by attackers. .

New vulnerability found in ABB TotalFlow flow computers and controllers exposes oil and gas utilities to potential attacks.

It links individual vulnerabilities in ransomware operations, helping vulnerability management teams prevent potential cyber extortion events with VulnDB.

GitHub has announced a range of new products designed to accelerate the company's push into major enterprises at its San Francisco event.

Today on 10 Minute IT Jams, we are joined by Erik Costlow, who is the Senior Director of Product Management, Azul.

Azul’s Vulnerability Detection, the new SaaS product, continuously detects vulnerabilities in Java applications by eliminating false positives.

Trustwave introduces its new Enterprise Pen Testing offering to meet the testing needs of large organizations with extensive vulnerability identification.