Apple Ships Major iOS, macOS Security Updates
Device maker Apple on Wednesday rolled out major security updates for its flagship macOS and iOS platforms, warning that multiple security defects expose users to…
Month: October 2023
Application Layer Gateways (ALG): A Detailed Overview
Snippet When you hear “Application Layer Gateway,” or ALG for short, think of it as a network traffic conductor. It’s the unsung hero that examines…
Windows 11 to let admins mandate SMB encryption for outbound connections
Windows 11 will let admins mandate SMB client encryption for all outbound connections, starting with today’s Windows 11 Insider Preview Build 25982 rolling out to…
Firefox, Chrome Updates Patch High-Severity Vulnerabilities
Mozilla and Google this week announced software updates for Firefox and Chrome that address multiple high-severity vulnerabilities, including memory safety bugs. On Tuesday, Mozilla released…
Flipper Zero can now spam Android, Windows users with Bluetooth alerts
A custom Flipper Zero firmware called ‘Xtreme’ has added a new feature to perform Bluetooth spam attacks on Android and Windows devices. A security researcher…
How False Positive Rates Impact E-Commerce Conversion Rates: Balancing Security & UX
By Benjamin Fabre, CEO & Co-founder, DataDome In the world of e-commerce, ensuring the security of online transactions is crucial. While bot management systems play…
Okta’s Latest Security Breach Is Haunted by the Ghost of Incidents Past
“This is the second time Cloudflare has been impacted by a breach of Okta’s systems,” a group of Cloudflare engineers wrote on Friday. They went…
7TB of Healthcare Data Leak Affects 12 Million Patients
The database was owned by Redcliffe Labs, a popular Indian medical diagnostics company located in Noida, Uttar Pradesh. Cybersecurity researcher Jeremiah Fowler discovered a non-password-protected…
HackerOne’s EPSS Integration for Better CVE Scoring and Remediation
At HackerOne, we’ve always been committed to helping customers navigate the complex landscape of prioritizing vulnerability remediation. The CVE Discovery feature in Hacktivity is instrumental…
Russian Hackers Caught Exploiting Roundcube Webmail Zero-Day
The Russia-linked advanced persistent threat (APT) actor Winter Vivern has been observed exploiting a zero-day vulnerability in the Roundcube webmail server in attacks aimed at…
Hackers Earn $400k on First Day at Pwn2Own Toronto 2023
The Pwn2Own Toronto 2023 hacking contest kicked off yesterday and participants successfully hacked NAS, printers, mobile phones, and other types of devices, earning a total…
Seiko says ransomware attack exposed sensitive customer data
Japanese watchmaker Seiko has confirmed it suffered a Black Cat ransomware attack earlier this year, warning that the incident has led to a data breach,…