NVD
As NVD flatlines, cybersecurity professionals call for urgent action
Consortium plans “doomed” as rumours swirl over vulnerability database program borkage.
NVD
Consortium plans “doomed” as rumours swirl over vulnerability database program borkage.
Cybersecurity
"They have direct access to JDBC connections, to SSH, and to SaaS platforms... This is a worst case scenario"
Microsoft
"A corporate culture that deprioritized both enterprise security investments and rigorous risk management."
cybersecurity
Poisoned Easter eggs for all: Apparent supply chain attack caught mercifully early…
cybersecurity
Prosecution follows allegations of extensive pwnage, desperately poor hygiene, and as CISO falls on his sword.
CISO
"The entire analysis from the original post is wrong. It shows only the negative value of using LLM in such cases..."
Microsoft
A raid by Russian hackers penetrated deeper than first thought: "Some of these secrets were shared between customers and Microsoft..."
CNI
"Almost no information is currently available to indicate how an organization is preparing for future cyber-physical challenges. This has to change."
Fortinet
"Disable SSL VPN (disable webmode is NOT a valid workaround..."
Microsoft
Expect to start hearing more about MS Graph...
vulnerabilities
There are no workarounds that remove the vulnerability, which allows unauthenticated remote command execution on vulnerable systems. A patch is available.
cybersecurity
"In every insider threat case, there is a combination of network activity and employee behaviour. The malicious activity crosses both physical and electronic modalities..."