Cisco tightens link between observability and security
Cisco has updated its full-stack observability platform with the latest version of Cisco Secure Application, designed to help IT departments secure development and deployment of…
Month: September 2023
Bug Bytes #211 – Hacking Casinos, Microsoft’s Key Mishap, Read the Docs and ImageMagick Strikes Again
Bug Bytes is a weekly newsletter curated by members of the bug bounty community. The second series is curated by InsiderPhD. Every week, she keeps…
SecurityWeek to Host Cyber AI & Automation Summit
Virtual conference will explore cybersecurity use-cases for artificial intelligence (AI) technology and the race to protect LLM algorithms from adversarial use. SecurityWeek will host its…
Windows Update Addressed 2 Zero-Days and 52 Other Vulnerabilities
CVE Number CVE Title Impact Max Severity Tag CVE-2023-4863 Chromium: CVE-2023-4863 Heap buffer overflow in WebP Microsoft Edge (Chromium-based) CVE-2023-41764 Microsoft Office Spoofing Vulnerability Spoofing…
Weaponized Free Download Manager for Linux Steals System Data
In recent years, Linux systems gained prominence among diverse threat actors, with more than 260,000 unique samples emerging in H1 2023. In the case of…
MetaStealer malware is targeting enterprise macOS users
Enterprise macOS users are being targeted by attackers slinging new information-stealing malware dubbed MetaStealer. The MetaStealer malware MetaStealer is delivered within malicious disk image format…
How Cyberattacks Are Transforming Warfare
There is a new battlefield. It is global and challenging to defend. What began with a high-profile incident back in 2007, when Estonia was hit…
Storm-0324 gathers over Microsoft Teams
A threat actor tracked in Microsoft’s taxonomy as Storm-0324 has been observed switching up its tactics to incorporate social engineering phishing attacks conducted via Microsoft…
A 10-Minute Conversation Behind The MGM Resorts Cyber Attack
On September 11, 2023, MGM Resorts International, a renowned premium destination resort brand in the United States, fell victim to a ransomware attack. The luxury…
SAP Patches Critical Vulnerability Impacting NetWeaver, S/4HANA
German business software maker SAP on Tuesday announced the release of 13 new and five updated security notes as part of its September 2023 Security…
Machine Learning is a Must for API Security
Modern digital transformations have been fuelled by APIs, altering how many businesses and organizations run. However, the recent innovation and digital transformation wave have also…
The US Congress Has Trust Issues. Generative AI Is Making It Worse
“In most of these areas, you already have existing statutes that prohibit the behaviors that we want to continue to be prohibited,” Young says. “So…