Automotive Industry Exposed to Have Major API Vulnerabilities
These API vulnerabilities exposed vehicles to information theft, account takeover, remote code execution (RCE), and even hijacking of physical commands such as starting and stopping…
Author: Cybernoz
Forging the Path to Continuous Audit Readiness
By Scott Gordon, CISSP, Technology oversight is a common mandate across IT and security frameworks and compliance specifications, but achieving that oversight is difficult.…
Zyxel releases XMG1930 series of switches for SMBs
Zyxel Networks has launched the XMG1930 series switches that provide SMBs, system integrators, managed service providers, and small internet service providers with a solution to…
Security vulnerabilities in major car brands revealed
Major new motor vehicle research has detailed multiple vulnerabilities across a wide range of car manufacturers. Your car potentially hasn’t “just” been a car for…
Hackers Can Abuse Visual Studio Marketplace to Target Developers with Malicious Extensions
Jan 09, 2023Ravie LakshmananSupply Chain / CodeSec A new attack vector targeting the Visual Studio Code extensions marketplace could be leveraged to upload rogue extensions…
Airbus extends Speedcast APAC gateway contract – Telco/ISP
Airbus has extended an arrangement with Speedcast to provide gateway hosting services offering secure access to its Skynet military satellite system from the Asia Pacific…
Kubernetes clusters hacked in malware campaign via PostgreSQL
The Kinsing malware is now actively breaching Kubernetes clusters by leveraging known weaknesses in container images and misconfigured, exposed PostgreSQL containers. While these tactics aren’t…
Stellar Cyber Open XDR Platform Wins ASTORS Awards in Three Categories
[ This article was originally published here ] SANTA CLARA, Calif.–()–, the innovator of Open XDR, has won three of American Security Today Magazine’s 2022…
Top SaaS Cybersecurity Threats in 2023: Are You Ready?
Jan 09, 2023The Hacker NewsWeb Security / SaaS Security Cybercriminals will be as busy as ever this year. Stay safe and protect your systems and…
GitHub makes it easier to scan your code for vulnerabilities
GitHub has introduced a new option to set up code scanning for a repository known as “default setup,” designed to help developers configure it automatically with…
LifeLock Review (2023): Privacy Wizards Publish Review of Norton LifeLock Identity Theft Protection Services
[ This article was originally published here ] BOSTON–()–Privacy Wizards announces the publication of its review of Norton LifeLock identity theft protection services. This comprehensive…
Malicious PyPI Packages Using Cloudflare Tunnels to Sneak Through Firewalls
Jan 09, 2023Ravie LakshmananNetwork Security / Supply Chain In yet another campaign targeting the Python Package Index (PyPI) repository, six malicious packages have been found…