Security vulnerabilities stories - Page 12

Users don’t have to use Internet Explorer for its legacy to have left you vulnerable to LogCrusher and OverLog.

Blue Connections was chosen by The Dempsey Group to provide a Fortinet network security solution to refresh its ageing network infrastructure.

Claroty's Team82 exposes major security vulnerabilities in Siemens PLCs and Dataprobe's PDUs, prompting urgent updates.

Deloitte is expanding its cyber security offerings, with the team from leading cyber consultancy, Hacktive, joining the firm.

Trellix has announced the establishment of the Trellix Advanced Research Center to advance global threat intelligence.

Coding Labs mechanisms allow developers to move from learning to applying secure coding knowledge more efficiently, leading to fewer code vulnerabilities.

The Vectra Protect team identified a post-exploitation opportunity in August, allowing malicious actors to steal valid user credentials from Microsoft Teams.

The Claroty research team (Team82) has found seven vulnerabilities in Dataprobe's iBoot-PDU, the company's intelligent power distribution unit product.

The most significant and most exploited cybersecurity vulnerability of any New Zealand organisation is its people.

Vulnerability disclosures impacting IoT devices increased by 57% in the first half of 2022 compared to the previous six months.

Check Point Software uncovers vulnerabilities in Xiaomi's mobile payment system, potentially affecting up to 1 billion users. Fixes have been provided.

Tenable has announced additions to Tenable Cloud Security that represent the next step in assessing threats related to cloud vulnerabilities.

The vulnerability disclosure landscape is highly volatile, with unreported vulnerabilities and inaccurate scoring, according to Flashpoint.

Report reveals heavy use of software vulnerabilities matching opportunistic behaviour of threat actors who search for weak points.

Claroty’s research arm (Team82) has uncovered and disclosed two critical vulnerabilities in FileWave’s Mobile Device Management (MDM) system.

Rapid7 enhances InsightCloudSec with layered context capabilities, providing security teams with a consolidated, real-time view of risk signals.

Sophos has revealed that the ransomware gang BlackCat has added Brute Ratel, a pentesting tool, to its arsenal of attack tools.

Hackers are exploiting security vulnerabilities faster than ever before, with the average time to exploitation down from 42 days to just 12 days.

New research from Secureworks reveals that Chinese threat group BRONZE STARLIGHT is using targeted ransomware as a smokescreen for cyber espionage.

Forescout’s Vedere Labs has disclosed OT: ICEFALL, naming 56 vulnerabilities affecting devices from 10 operational technology vendors.