0days
Why firewalls, VPNs and hypervisors are a hacker's new favourite target
TTPs and telemetry suggest a real focus on zero days and appliances by Chinese APTs.
Citrix
Citrix Bleed: Two ransomware groups now exploiting bug for initial access
Here's what you need to do to reduce the threat posed by CVE-2023-4966. But don't delay.
ransomware
English-speaking ransomware group expanding ops, deploying diverse tools, threats
Both blunt and more advanced social engineering approaches used for initial access; the group also has sophisticated hands-on-keyboards capabilities and a diverse toolset.
Cisco
Incident response exercises urged after mass Cisco device exploitation
Cisco says patch pending October 22 for what transpires to have been two discrete zero days...
News
"The worst security flaw in a long time" is about to land. With 20 billion curl installations, be worried
Could a pending curl vulnerability be the next Log4j?
News
Georgia on my fines: Top tech uni charged with discrimination
Renowned IT research institute Georgia Tech has been fined for discriminating against non US citizens in its job fairs
CISO
The five key habits of top CISOs
These approaches cropped up regularly amongst those CISOs inhabiting the metaphorical equivalent of that top right corner in a Magic Quadrant (now there's an idea...)
CISO
Kroll blasts T-Mobile after SIM swapping attack enables data breach: CISOs, listen up...
Security leaders would do well to revisit this month's findings of the Cyber Security Advisory Board (CSRB)...
cybersecurity
Wiz eyes SentinelOne as cybersecurity market evolves
Wiz, the fastest software company to grow from $1 million to $100 million in ARR should be aware how fast boasts about record-breaking achievements can look like yesterday's news. Just ask SentinelOne...
malware
WinRAR zero-day used to pack in malware for targeted attacks
A months-long malware campaign was seen exploiting a zero-day flaw in WinRAR for spear-phishing attacks aimed at traders and finance professionals
News
Adobe patch nightmare: Trio of application server vulnerabilities being exploited
Want to let criminals “query your databases, add/change/delete files, export data or files off your server”? No, then you should probably be paying close attention to whether you are running Adobe ColdFusion and if you are exposed...
News
MobileIron under active attack, admins warned to update
Ivanti is warning of attacks on its MobileIron platform due to improper handling of APIs