Cloud Security
Microsoft has confirmed that it inadvertently exposed information related to prospective customers, but claims that the company which reported the incident has exaggerated the...
Hi, what are you looking for?
SecurityWeek
Cloud Security
Microsoft and Proofpoint are warning organizations that use cloud services about a recent consent phishing attack that abused Microsoft’s ‘verified publisher’ status.
Cloud Security
VMware vRealize Log Insight vulnerability allows an unauthenticated attacker to take full control of a target system.
Application Security
A CSRF vulnerability in the source control management (SCM) service Kudu could be exploited to achieve remote code execution in multiple Azure services.
Application Security
Many developers and security people admit to having experienced a breach effected through compromised API credentials.
Cloud Security
Orca Security published details on four server-side request forgery (SSRF) vulnerabilities impacting different Azure services.
Application Security
Electric car maker Tesla is using the annual Pwn2Own hacker contest to incentivize security researchers to showcase complex exploit chains that can lead to...
Application Security
Cybersecurity firm SafeBreach has issued a warning about a new PowerShell backdoor that disguises itself as part of the Windows update process to remain...
Cloud Security
Microsoft recently patched a vulnerability that can allow an attacker to gain full administrator permissions on Azure Service Fabric clusters.
Audits
California startup Bolster, Inc. has raised $15 million in venture capital funding to build a fraud prevention platform for businesses.The early-stage funding round was...
Application Security
European venture capital and private equity firm Smartfin on Tuesday announced a deal to acquire Hex-Rays, the Belgian company behind the widely deployed IDA...
Application Security
Messaging and collaboration software maker Zimbra has rushed out patches to provide cover for a code execution flaw that has already been exploited to...
Application Security
Video messaging technology powerhouse Zoom has rolled out a high-priority patch for macOS users alongside a warning that hackers could abuse the software flaw...
Application Security
Container and cloud-native application security provider Aqua Security warns that the existence of private NPM packages can be disclosed by performing timing attacks.
Application Security
Software maker Adobe on Tuesday released security patches for 29 documented vulnerabilities across multiple enterprise-facing products and warned that hackers could exploit these bugs...
Application Security
It’s officially a venture capital funding frenzy in the software supply chain security space.
Application Security
Private equity giant KKR is expanding its big bet on penetration testing and attack surface management firm NetSPI with a new $410 million investment...
Application Security
Cybercrime
North Korean hackers working for the government stole virtual assets last year estimated to be worth between $630 million and more than $1 billion, U.N. experts...
Cyberwarfare
Cybersecurity Funding
Vulnerabilities
