Content Paint

Search the site
Search
Sign in

Cybersecurity

DDoS  | Nov 09, 2023
ChatGPT says major outages may be due to DDoS attacks
ChatGPT DDoS attack

Incident follows record HTTP2 "Rapid Reset" attack warnings as well as CISA note on exploitation of Service Location Protocol vulnerability for DDoS purposes.

Microsoft  | Nov 03, 2023
Microsoft pledges a dramatic software security overhaul, as Amazon veteran shakes the tree
Amazon veteran Charlie Bell is leading a software security overhaul at Microsoft

Biggest overhaul of Redmond's security in 20 years sees promises of "code analysis [of] 100% of commercial product”, cryptographic keys to be kept in a hardened Azure HSM, more.

CISO  | Nov 03, 2023
As SEC’s SolarWinds charges reverberate, companies scrutinise cyber risk disclosures
As SEC’s SolarWinds charges reverberate, companies scrutinise cyber risk disclosures

'Do not state anything that is subjective and avoid adjectives (e.g., "state of the art," "mature," "advanced," "appropriate," "comprehensive," or "reasonable")' say experts.

News  | Oct 27, 2023
Zero day in free Roundcube webmail service exploited to target governments
Zero day in free Roundcube webmail service exploited to target governments

Despite the low sophistication of the group’s toolset, it is a threat to governments in Europe because... a significant number of internet-facing applications are not regularly updated although they are known to contain vulnerabilities.”

 |  data breaches  | Oct 25, 2023
Okta breach looks worse as BeyondTrust, Cloudflare, 1Password report impact, flag concerns
Okta breach looks worse as BeyondTrust, Cloudflare, Password1 report impact, flag concerns

Concern at IAM vendor Okta's response mounts as BeyondTrust details concerns, Cloudflare calls for customers to press harder on "further information regarding potential impact to your organization"

ransomware  | Oct 23, 2023
Was this the most vanilla ransomware attack ever?
Was this the most vanilla ransomware attack ever?

"VPNs pose a threat to enterprise security. They create a path in the network perimeter and provide access to network resources after authentication..."

Okta  | Oct 23, 2023
Fresh Okta breach exposes files: HAR, but no laughing matter
New Okta breach

The attackers used a "stolen credential to access Okta's support case management system"

 |  NSA  | Oct 19, 2023
Top 10 misconfigurations: NSA checklist for CISOs flags Active Directory Certificate Services
Top 10 misconfigurations: NSA checklist for CISOs flags Active Directory Certificate Services

"In some cases, the actor may be restricted or detected by advanced defense-in-depth and zero trust implementations as well, but this has been a rare finding in assessments thus far"

 |  nuclear  | Oct 19, 2023
UK nuclear firms get code red warning over cybersecurity failings
UK nuclear firms get code red warning over cybersecurity failings

Cybersecurity failures "escalated…to significantly enhanced attention"

Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Great! You've successfully signed up.
Great! You've successfully signed up.
Welcome back! You've successfully signed in.
Success! You now have access to additional content.