API6:2023 Unrestricted Access to Sensitive Business Flows
Welcome to the 7th post in our weekly series on the new 2023 OWASP API Security Top-10 list, with a particular focus on security practitioners.…
Latest Cybersecurity News — Page 5020
View all →
2 Polish Men Arrested for Radio Hack That Disrupted Trains
A monthslong WIRED investigation published this week revealed the inner workings of the Trickbot ransomware gang, which has targeted hospitals, businesses, and government agencies around…
Charting AI Frontier In Cybersecurity With Ryan Davis
In a candid and insightful conversation, Augustin Kurian, Editor-in-Chief of The Cyber Express, sat down with Ryan Davis, a distinguished figure in the realm of…
Okta Warns of Social Engineering Attacks Targeting Super Administrator Privileges
Sep 02, 2023THNCyber Attack / Social Engineering Identity services provider Okta on Friday warned of social engineering attacks orchestrated by threat actors to obtain elevated…
A firsthand perspective on the recent LinkedIn account takeover campaign
It started with a password reset email in the middle of the night. Not long ago I wrote about a recent campaign to hold LinkedIn…
Exploit Code Published for Critical-Severity VMware Security Defect
Just days after shipping a major security update to correct vulnerabilities in its Aria Operations for Networks product line, VMWare is warning that exploit code…
Talos wars of customizations of the open-source info stealer SapphireStealer
Talos wars of customizations of the open-source info stealer SapphireStealer Pierluigi Paganini September 01, 2023 Cisco reported that multiple threat actors are customizing the SapphireStealer…
Lazarus hackers deploy fake VMware PyPI packages in VMConnect attacks
North Korean state-sponsored hackers have uploaded malicious packages to the PyPI (Python Package Index) repository, camouflaging one of them as a VMware vSphere connector module…
Microsoft is killing WordPad in Windows after 28 years
Microsoft announced today that it will deprecate WordPad with a future Windows update as it’s no longer under active development, though the company did not…
Exploit released for critical VMware SSH auth bypass vulnerability
Proof-of-concept exploit code has been released for a critical SSH authentication bypass vulnerability in VMware’s Aria Operations for Networks analysis tool (formerly known as vRealize…
Microsoft reminds of Windows 11 21H2 forced updates before end of service
Microsoft has reminded customers that systems running Windows 11 21H2 will be force-updated before the end of servicing next month. Since Windows 11 21H2 devices…
Microsoft retires Visual Studio for Mac, support ends in a year
Microsoft has announced it is retiring Visual Studio for Mac and that support for the latest version, 17.6, will continue for another year, until August 31, 2024.…