Interview: Florence Mottay, global CISO, Zalando
Florence Mottay started her career in cyber security, researching exploits for security vulnerabilities in a small US startup. Today, she is the group chief information…
Latest Cybersecurity News — Page 852
View all →
Leading surveillance camera vendor signs CISA’s product-security pledge
Listen to the article 3 min This audio is auto-generated. Please let us know if you have feedback. Surveillance camera maker Axis Communications said Tuesday…
K7 Antivirus Vulnerability Allows Attackers Gain SYSTEM-level Privileges
A serious privilege escalation vulnerability in K7 Ultimate Security, an antivirus product from K7 Computing, was found by abusing named pipes with overly permissive access…
Longwatch RCE Flaw Allows Attackers to Run Remote Code with Elevated Privileges
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an advisory warning about a critical remote code execution vulnerability affecting Industrial Video & Control’s Longwatch…
Automation and Collective defence as the foundation to bridge the cyberskills gap
The working world is facing a severe resourcing crisis, with many industries finding their usual recruitment wells are running dry. This is particularly the case…
Architecture Patterns That Enable Cycode alternatives at Scale – Hackread – Cybersecurity News, Data Breaches, Tech, AI, Crypto and More
Choosing a security platform is more than just a feature-for-feature comparison. As organisations grow, the underlying architecture of their security tools becomes critically important. A…
UK national security strategy failing to account for online world
The UK’s national security strategy falls short in sufficiently accounting for the digital world’s impact on our daily lives, according to the UK’s independent terrorism…
Deep dive into DragonForce ransomware and its Scattered Spider connection
Security researchers have conducted an in-depth analysis of DragonForce ransomware that initially emerged in 2023 and has since evolved into what it calls a “ransomware…
Shai-Hulud 2.0 Malware Attack Compromised 30,000 Repositories and Stolen 500 GitHub Usernames and Tokens
A significant supply chain security breach has emerged with the discovery of Shai-Hulud 2.0, a sophisticated malware that has compromised over 30,000 GitHub repositories since…
Malicious Rust “evm-units” Impersonator Deploys OS-Specific Payloads
A malicious Rust crate masquerading as an Ethereum Virtual Machine (EVM) utility has been caught delivering silent, OS-specific payloads to developers’ machines. The package, named…
How attackers use real IT tools to take over your computer
A new wave of attacks is exploiting legitimate Remote Monitoring and Management (RMM) tools like LogMeIn Resolve (formerly GoToResolve) and PDQ Connect to remotely control…
Attackers Don’t Need to Breach Your API -They’ll Breach the Tools That Touch It — API Security
The API supply chain is the new security blind spot. Attackers no longer need to breach your APIs directly; they can target the third-party services…