API Security
31
Oct
2023

IAM Credentials in Public GitHub Repositories Harvested in Minutes

A threat actor is harvesting identity and access management (IAM) credentials from public GitHub repositories within five minutes of exposure,…

Global CRM Provider Exposed Millions of Clients’ Files Online
31
Oct
2023

WiHD leak exposes details of all torrent users

WiHD leak exposes details of all torrent users Pierluigi Paganini October 31, 2023 World-in-HD (WiHD), a French private video torrent…

Prolific Puma URL shortening provider uses thousands of domains to serve cybercriminals
31
Oct
2023

Massive cybercrime URL shortening service uncovered via DNS data

An actor that security researchers call Prolific Puma has been providing link shortening services to cybercriminals for at least four…

Dragos Launches OT Cyber Industry’s Only Global Partner Program to Span Technology, Services, Threat Intelligence, and Training
31
Oct
2023

Dragos and Rockwell Automation Strengthen Industrial Control System Cybersecurity for Manufacturers with Expanded Capabilities

Today, Dragos Inc., cybersecurity for industrial controls systems (ICS)/operational technology (OT) environments specialists, have announced the expansion of its combined…

F5 BIG-IP Vulnerability
31
Oct
2023

Attackers Exploiting Critical F5 BIG-IP Vulnerability

Exploitation of a recently patched critical vulnerability in F5’s  BIG-IP product started less than five days after public disclosure and…

Malicious Nuget packages
31
Oct
2023

Malicious NuGet packages abuse MSBuild to install malware

A new NuGet typosquatting campaign pushes malicious packages that abuse Visual Studio’s MSBuild integration to execute code and install malware…

Russia’s New Hacking Tool Creates Hundreds Of Fake Social Media Profiles In Seconds
31
Oct
2023

Russian Hacking Tool Creates Fake Social Media Profiles in Seconds

The Kopeechka service, which refers to “penny” in Russian, is a new tool criminals use to quickly and easily generate…

Women in tech – is retention currently more important than hiring?
31
Oct
2023

We mustn’t let the return to offices kill the growth of women in tech

Slow progress on gender diversity Getting this right remains a key issue because women are still woefully under-represented in the…

Canada Bans WeChat and Kaspersky Due to Spying Concerns
31
Oct
2023

Canada Bans WeChat and Kaspersky Due to Spying Concerns

The Government of Canada has instructed government employees to immediately uninstall WeChat and Kaspersky apps from their smartphones, tablets, and…

F5 BIG-IP logo
31
Oct
2023

Patch now! BIG-IP Configuration utility is vulnerable for an authentication bypass

Tech company F5 has warned customers about a critical authentication bypass vulnerability impacting its BIG-IP product line that could result…

Confluence Vulnerability
31
Oct
2023

Atlassian Warns of New Critical Confluence Vulnerability Threatening Data Loss

Oct 31, 2023NewsroomVulnerability / Data Protection Atlassian has warned of a critical security flaw in Confluence Data Center and Server…

How much is enough to support those who maintain open source?
31
Oct
2023

How much is enough to support those who maintain open source?

The research and development team at Spotify has nominated four open source projects to receive a share of its annual…