SecurityBrief UK - Technology news for CISOs & cybersecurity decision-makers

Vulnerability stories

Story image
Cado Security unmasks Cerber ransomware threat to Confluence servers
Yesterday
#
ransomware
#
encryption
#
cybersecurity
Cyber security firm, Cado Security, uncovers revelations about a Linux variant of Cerber ransomware exploiting vulnerabilities in Confluence servers using the CVE-2023-22518 exploit.
Story image
FICO survey reveals identity theft & fraud fears among Indonesians
This month
#
accounting systems
#
physical security
#
digital banking
FICO's study reveals prolonged fears of identity theft among Indonesians, as 36% remain anxious, heightening vulnerabilities to financial loss and credit damage amid growing risks from real-time payments.
Story image
GitGuardian introduces tool to strengthen codebase health
Last month
#
application security
#
it automation
#
devsecops
Cybersecurity firm GitGuardian has introduced a Software Composition Analysis module, designed to enhance the health of organisations' codebases by automating detection and remediation of vulnerabilities in software dependencies.
Story image
Critical zero-day vulnerability in D-Link routers exposes thousands
Last month
#
cybersecurity
#
d-link
#
botnet
Ensign InfoSecurity reveals a zero-day vulnerability in D-Link DIR-822 routers, putting users at risk of cyber attacks including data theft.
Story image
A proactive approach to cyber and physical security
Last month
#
encryption
#
advanced persistent threat protection
#
physical security
Recent Genetec survey reveals a rising awareness of cyber threats targeting physical security systems, sparking increased investment in cybersecurity resources and protocols.
Story image
IWD 2024: Embrace Your Vulnerability to Drive Growth
Last month
#
learning
#
leadership
#
amazon
On International Women's Day 2024, women are urged to harness moments of vulnerability and change to drive personal and professional growth, challenging fears and embracing innovation.
Story image
IWD 2024: People count (not just accountants)
Last month
#
learning
#
support
#
customers
Zuto's COO underlines the importance of diverse, strong teams that align with ESG considerations, attributing their recent B Corp certification and growth to a people-first approach.
Story image
IWD 2024: Pushing through the uncomfortable to empower your teams
Last month
#
dei
#
business
#
workplace
On International Women's Day 2024, women strive for equality in STEM fields, overcoming difficulties, and advocating for their teams, with data indicating a growing desire for career progression.
Story image
VIAVI adds traffic analysis capabilities to Observer Sentry SaaS solution
Last month
#
cloud services
#
saas
#
devops
VIAVI Solutions boosts Insight into threats for enterprises using multiple AWS clouds with the addition of traffic analysis capabilities to its Observer Sentry SaaS solution.
Story image
Checkmarx report reveals 92% companies faced breach due to app vulnerabilities
Last month
#
application security
#
developers
#
apps
Future of AppSec research by Checkmarx unveils 92% of firms suffered a breach in the past year due to flaws in in-house developed applications.
Story image
HackerOne launches AI co-pilot Hai to improve vulnerability response times
Thu, 29th Feb 2024
#
data protection
#
ai
#
information management
HackerOne unveils AI co-pilot, Hai, reducing businesses' time interpreting vulnerability reports and boosting rectification efficiency by translating technical data into user-friendly information.
Story image
APIs become the leading attack vector, cybersecurity research shows
Wed, 28th Feb 2024
#
cybersecurity
#
breach prevention
#
research
Cybersecurity firm Imperva has found that 71% of last year's web traffic was linked to APIs, acting as a major attack vector due to organisations' insufficient visibility, leading to a sharp rise in targeted attacks.
Story image
Trend Micro dismantles major ransomware group LockBit
Wed, 28th Feb 2024
#
malware
#
advanced persistent threat protection
#
cybersecurity
Trend Micro collaborates with global law enforcement agents to disrupt major ransomware group, LockBit, responsible for a quarter of 2023's ransomware leaks amounting to billions of dollars.
Story image
Take a closer look at your company's software supply chain
Wed, 21st Feb 2024
#
malware
#
paas
#
saas
Amid the rise of remote work and cloud technology, firms face increased cyber security risks from poorly managed software supply chains, warns industry expert.
Story image
New Barracuda threat report reveals web apps exploitation methods
Tue, 20th Feb 2024
#
firewall
#
ddos
#
microsoft
The Threat Spotlight report by Barracuda Networks reveals a surge in cyberattacks exploiting web application security gaps, with over 18 billion attacks mitigated in 2023.
Story image
Armis acquires CTCI, forms AI-powered cybersecurity powerhouse
Thu, 15th Feb 2024
#
ml
#
dark web
#
ai
Armis acquires AI threat intelligence firm, CTCI, boosting its forecast abilities and creating a powerful new Global Threat Intelligence Service.
Story image
Retail theft at self-checkouts doubles, AI poses possible solution
Thu, 18th Jan 2024
#
physical security
#
transactions
#
cios
Surging retail theft via self-checkouts sees cart-based losses doubling in a year, costing the average store over $102k annually, reveals an Everseen report.
Story image
Guardio Labs exposes critical vulnerability in Opera browser
Thu, 18th Jan 2024
#
dark web
#
opera
#
cios
Guardio Labs uncovers a significant zero-day vulnerability in Opera's browser, threatening its 350 million active users; Opera's 'My-Flow' feature enables act of exploitation.
Story image
Google Cloud launches tool to detect plaintext credentials for free
Fri, 5th Jan 2024
#
cloud services
#
encryption
#
public cloud
Google Cloud launches a secret discovery tool aimed at boosting organisation's security by detecting and monitoring plaintext credentials, part of its no-cost Sensitive Data Protection offering.
Story image
iPhone hardware feature exploited in Operation Triangulation
Thu, 4th Jan 2024
#
apple
#
it training
#
advanced persistent threat protection
Kaspersky reveals hackers have utilised a previously unknown iPhone hardware feature to bypass Apple's memory protections.
Story image
Netsafe reveals growing online harm for New Zealanders
Fri, 29th Dec 2023
#
cyberbullying
#
netsafe
#
nz
Netsafe's 2023 research reveals a sharp rise in harmful digital communications experienced by New Zealanders, with almost half of the Māori population and many under 30 falling victim.
Story image
NEC unveils AI strategy, aims to revolutionise industries with generative AI
Thu, 28th Dec 2023
#
partner programmes
#
ai
#
business strategy
NEC launches a tailored AI solution to revolutionise operations across industries, building on its enhanced large language model.
Story image
CybeReady celebrates standout year in security awareness training
Wed, 20th Dec 2023
#
emea
#
analyst report
#
cios
CybeReady has seen exceptional growth over the course of 2023, with significant strides in security awareness training solutions.
Story image
Zoom introduces VISS, an innovative approach to vulnerability assessment
Mon, 18th Dec 2023
#
open source
#
digital assessment
#
zoom
Zoom unveils Vulnerability Impact Scoring System (VISS), an open-source method set to revolutionise online security. .