Managed SIEM Pricing: A Guide to Cost and Value
When it comes to protecting your business from increasingly sophisticated cyber threats, a Managed Security Information and Event Management (SIEM) solution is becoming a must-have.…
Category: CyberSecurityNews
Critical Cisco ASA Flaw Allows SSH Remote Command Injection
A critical vulnerability has been identified in the Cisco Adaptive Security Appliance (ASA) Software, posing a significant security risk to systems using this software. The…
U.S. Govt Announces Rewards Up To $10 Million For Info On Iranian Hackers
The U.S. Department of State’s Rewards for Justice program has launched a major initiative offering up to $10 million for information on Iranian hackers targeting…
CISA Warns Active Exploitation of Microsoft SharePoint Vulnerability
The Cybersecurity and Infrastructure Security Agency (CISA) has added a new vulnerability to its Known Exploited Vulnerabilities Catalog following evidence of its active exploitation. CVE-2024-38094…
Embargo Ransomware Actors Abuses Safe Mode To Disable Security Solutions
Safe Mode is an operating system diagnostic mode. It is primarily used to troubleshoot issues by loading only essential “drivers” and “services.” In Safe Mode,…
GitLab Patches Critical HTML Injection Flaw Leading To XSS Attacks
GitLab has released new patch versions 17.5.1, 17.4.3, and 17.3.6 for both its Community Edition (CE) and Enterprise Edition (EE). These updates address a critical…
Cisco ASA & FTD VPNs Vulnerability Actively Exploited in Attacks
Cisco has disclosed a critical vulnerability in its Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) software that is actively exploited in the wild.…
Chrome Security Update, Patch for High Severity Vulnerability
Google has released a critical security update for its Chrome browser, addressing three high-severity vulnerabilities that could compromise user security. The latest stable channel update,…
Critical Zero-Day Vulnerability in FortiManager Exploited in the Wild
Fortinet has publicly disclosed a critical zero-day vulnerability in its FortiManager software, identified as CVE-2024-47575. The vulnerability has been actively exploited in the wild. Due…
Hardcoded Creds In Popular Apps Put Millions Of Android & iOS Users At Risk
Hardcoded credentials are often found in source code and refer to the practice of embedding “plain text passwords” and other “sensitive information” directly into applications.…
Lazarus APT Hackers Exploit Chrome Zero-Day via Cryptocurrency Game
The notorious Lazarus Advanced Persistent Threat (APT) group has exploited a zero-day vulnerability in the Google Chrome browser, using a cryptocurrency-themed game as a lure.…
Xerox Printers Vulnerability Let Attackers Remotely Takeover Devices
Multiple Xerox printer models have been found to have a severe security vulnerability, which allows attackers with administrative access to completely take control of the…