Operation Toy Soldier Indicts Notorious Russian Hackers
The U.S. Department of Justice announced the indictment of several members of Russia’s GRU Unit 29155 for their alleged role in a series of cyberattacks on…
Month: October 2024
GitHub addressed a critical vulnerability in Enterprise Server
GitHub addressed a critical vulnerability in Enterprise Server Pierluigi Paganini October 16, 2024 GitHub addressed a critical vulnerability in Enterprise Server that could allow unauthorized…
CISA Releases ICS Advisories to Mitigate Cyber Attacks
The Cybersecurity and Infrastructure Security Agency (CISA) released two critical Industrial Control Systems (ICS) advisories on October 15, 2024. These advisories provide essential information about…
Do Passkeys Truly Boost Cybersecurity in the Future?
As the digital landscape evolves, so too do the methods used by cybercriminals to exploit vulnerabilities in online security. Traditional password-based authentication systems are increasingly…
CISA Warns of Active Exploitation in SolarWinds Help Desk Software Vulnerability
Oct 16, 2024Ravie LakshmananVulnerability / Data Protection The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a critical security flaw impacting SolarWinds Web…
Safeguard Your Personal Information: 6 Essential Online Tips
These days, many people don’t think twice about sharing their personal information online. Some even go as far as mentioning their address, phone number, or…
CISA Warns of Three Vulnerabilities Actively Exploited in the Wild
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert regarding three critical vulnerabilities currently exploited in the wild. These vulnerabilities affect widely…
GitHub Patches Critical Flaw in Enterprise Server Allowing Unauthorized Instance Access
Oct 16, 2024Ravie LakshmananEnterprise Security / Vulnerability GitHub has released security updates for Enterprise Server (GHES) to address multiple issues, including a critical bug that…
Strengthening Kubernetes security posture with these essential steps
In this Help Net Security interview, Paolo Mainardi, CTO at SparkFabrik, discusses comprehensive strategies to secure Kubernetes environments from development through deployment. He focuses on…
Resilience over reliance: Preparing for IT failures in an unpredictable digital world
No IT system — no matter how advanced – is completely immune to failure. The promise of a digital ring of steel may sound attractive,…
Microsoft Dataverse Authentication Flaw Let Attackers Escalate Privileges
A critical security vulnerability in Microsoft Dataverse has been discovered, allowing authorized attackers to elevate their privileges over a network. The flaw, identified as CVE-2024-38139,…
Chrome 130 Released with Fix for 17 Security Flaws
Google has released Chrome 130, addressing 17 security vulnerabilities in the popular web browser. This latest update, version 130.0.6723.58/.59 for Windows and Mac and 130.0.6723.58…