Cybersecurity - The Stack (Page 17)

Over 200,000 unique malware samples found in 12 weeks, amid AI threat warnings

Signature-based detection is dying hard.

Edward Targett April 26, 2023

"Cascading" software supply chain attack now has CNI victims in EU, US

"Cascading" software supply chain attack now has CNI victims in EU, US

Two critical infrastructure providers in the energy sector were breached via a software supply chain attack that also hit business communications provider 3CX and its downstream customers, as well as trading companies. That’s according to cybersecurity firm Symantec this week, which said that its Threat Hunter Team had identified...

Azania Imtiaz Patel April 25, 2023

vmware

VMware warns over pre-auth RCE bug in logging utility

From remote nobody to root in one deserialization bug exploit...

The Stack April 23, 2023

Kubernetes security audit warns over 19 issues, unfixed 2019 bugs

Kubernetes security audit warns over 19 issues, unfixed 2019 bugs

NCC Group audit puts the spotlight on API, permissions weaknesses.

Edward Targett April 19, 2023

Russian APT hacked Cisco routers to hit US government

Russian APT hacked Cisco routers to hit US government

Cisco "deeply concerned" at attacks on "routers and firewalls globally"

The Stack April 18, 2023

Restaurants reel as POS app hit by ransomware

Restaurants reel as POS app hit by ransomware

Major franchises affected after $7.8 billion firm hit in attack

The Stack April 17, 2023

data breach

insider threat

Pentagon

Pentagon leaks by a junior sysadmin put the spotlight back on insider threat

A High School diploma and "normal colour vision" get you a lot of access...

The Stack April 14, 2023

Patch Tuesday brings a zero day fix and a patch for a... 2013 bug?

Featured

Read This

Patch Tuesday

Patch Tuesday brings a zero day fix and a patch for a... 2013 bug?

Microsoft has urged users to patch a zero day in the Windows Common Log File System (CLFS) that allows elevation by a local attacker to SYSTEM privileges and which is being exploited in the wild. CVE-2023-28252 was reported by a member of China’s DBAPPSecurity WeBin Lab and as that...

The Stack April 11, 2023

Over 200,000 unique malware samples found in 12 weeks, amid AI threat warnings

"Cascading" software supply chain attack now has CNI victims in EU, US

VMware warns over pre-auth RCE bug in logging utility

Kubernetes security audit warns over 19 issues, unfixed 2019 bugs

Russian APT hacked Cisco routers to hit US government

Restaurants reel as POS app hit by ransomware

Pentagon leaks by a junior sysadmin put the spotlight back on insider threat

Patch Tuesday brings a zero day fix and a patch for a... 2013 bug?