How to Plan a New (and Improved!) Password Policy for Real-World Security Challenges
Many organizations struggle with password policies that look strong on paper but fail in practice because they’re too rigid to...
Read more →News Archive
View All →
Cloudflare Developer Domains Abused For Cyber Attacks
Cloudflare developer domains are actively abused by the threat actors for several illicit malicious purposes, as reported by the security...
Read more →
Researchers Uncover Backdoor in Solana’s Popular Web3.js npm Library
Dec 04, 2024Ravie LakshmananSupply Chain Attack Cybersecurity researchers are alerting to a software supply chain attack targeting the popular @solana/web3.js...
Read more →
Australia, Canada, New Zealand, and the U.S. warn of PRC-linked cyber espionage targeting telecom networks
Australia, Canada, New Zealand, and the U.S. warn of PRC-linked cyber espionage targeting telecom networks Pierluigi Paganini December 04, 2024...
Read more →
Google Chrome Security Update, Patch for High-severity Vulnerability
Google has released a significant security update for its Chrome browser, aiming to address several vulnerabilities and enhance user safety....
Read more →
FortiAppSec Cloud simplifies web application security management
Fortinet announced FortiAppSec Cloud, a new cloud-delivered platform that integrates key web application security and performance management tools into a...
Read more →
New TLDs Like .shop, .top And .xyz Attracting Phishers
A significant surge in phishing attacks has been unveiled by a recent study conducted by Interisle Consulting, with a nearly...
Read more →
Veza Access Requests reduces the risk of identity-based threats
Veza announced Veza Access Requests product, enabling organizations to reduce the risk of identity-based threats with automated access policy intelligence...
Read more →
Europol Shuts Down Criminal Messaging Platform MATRIX
On December 3rd, 2024, Europol announced that a joint investigation between French and Dutch law enforcement authorities had successfully dismantled...
Read more →
U.S. CISA adds ProjectSend, North Grid Proself, and Zyxel firewalls bugs to its Known Exploited Vulnerabilities catalog
U.S. CISA adds ProjectSend, North Grid Proself, and Zyxel firewalls bugs to its Known Exploited Vulnerabilities catalog Pierluigi Paganini December...
Read more →
Progress WhatsUp Gold RCE Vulnerability
A registry overwrite remote code execution (RCE) vulnerability has been identified in NmAPI.exe, part of the WhatsUp Gold network monitoring...
Read more →
Hackers Use Corrupted ZIPs and Office Docs to Evade Antivirus and Email Defenses
Dec 04, 2024Ravie LakshmananEmail Security / Malware Cybersecurity researchers have called attention to a novel phishing campaign that leverages corrupted...
Read more →