Endpoint Security Archives

SECURITYWEEK NETWORK:

ICS:

Hi, what are you looking for?

Endpoint Security

Apple Patches WebKit Flaws Exploited on Older iPhones

Apple's security response team warns that flaws CVE-2023-42916 and CVE-2023-42917 were already exploited against versions of iOS before iOS 16.7.1.

Ryan Naraine5 days ago

Data Protection

Critical ownCloud Flaws Lead to Sensitive Information Disclosure, Authentication Bypass

Three critical vulnerabilities in ownCloud could lead to sensitive information disclosure and authentication and validation bypass.

Ionut ArghireNovember 27, 2023

Endpoint Security

Windows Hello Fingerprint Authentication Bypassed on Popular Laptops

Researchers have tested the fingerprint sensors used for Windows Hello on three popular laptops and managed to bypass them.

Eduard KovacsNovember 22, 2023

Endpoint Security

Chipmaker Patch Tuesday: Intel, AMD Address Over 130 Vulnerabilities

Intel and AMD have informed their customers about a total of more than 130 vulnerabilities found in their products.

Eduard KovacsNovember 15, 2023

Endpoint Security

New Intel CPU Vulnerability ‘Reptar’ Can Allow DoS Attacks, Privilege Escalation

A new Intel CPU vulnerability tracked as Reptar and CVE-2023-23583 can be exploited for DoS attacks and possibly privilege escalation.

Eduard KovacsNovember 15, 2023

Endpoint Security

Intel Sued Over ‘Downfall’ CPU Vulnerability

A class action lawsuit has been filed against Intel over its handling of CPU speculative execution vulnerabilities, with a focus on Downfall.

Eduard KovacsNovember 10, 2023

Endpoint Security

Downfall: New Intel CPU Attack Exposing Sensitive Information

Google researcher discloses the details of an Intel CPU attack method named Downfall that may be remotely exploitable.

Eduard KovacsAugust 9, 2023

Endpoint Security

Nearly All Modern CPUs Leak Data to New Collide+Power Side-Channel Attack

A new power side-channel attack named Collide+Power can allow an attacker to obtain sensitive information and it works against nearly any modern CPU.

Eduard KovacsAugust 1, 2023

Endpoint Security

AMD CPU Vulnerability ‘Zenbleed’ Can Expose Sensitive Information

AMD has released microcode patches to address Zenbleed, a vulnerability in its Zen 2 CPUs that can allow an attacker to access sensitive information.

Eduard KovacsJuly 25, 2023

Endpoint Security

New AMI BMC Flaws Allowing Takeover and Physical Damage Could Impact Millions of Devices

Two new serious vulnerabilities in AMI BMC, which is used by millions of devices, can allow attackers to take control of systems and cause...

Eduard KovacsJuly 20, 2023

Cybercrime

Microsoft Revokes Many Signed Drivers Used by Chinese Cybercriminals

Microsoft has revoked signed drivers used for post-exploitation activity, in many cases by Chinese cybercriminals.

Eduard KovacsJuly 12, 2023

Endpoint Security

MOVEit: Testing the Limits of Supply Chain Security

The need for cyber resilience arises from the growing realization that traditional security measures are no longer enough to protect systems, data, and the...

Torsten GeorgeJuly 12, 2023

Endpoint Security

Western Digital Blocks Unpatched Devices From Cloud Services

Western Digital is blocking access to its cloud services for devices running firmware versions impacted by a critical security vulnerability.

Ionut ArghireJune 19, 2023

Endpoint Security

CISA, NSA Share Guidance on Hardening Baseboard Management Controllers

CISA and the NSA have published new guidance to help organizations harden baseboard management controllers (BMCs).

Ionut ArghireJune 15, 2023

Endpoint Security

Microsoft Makes SMB Signing Default Requirement in Windows 11 to Boost Security

Microsoft is making SMB signing a default requirement in Windows 11 Enterprise editions, starting with insider preview build 25381.

Ionut ArghireJune 5, 2023

Endpoint Security

Gigabyte Rolls Out BIOS Updates to Remove Backdoor From Motherboards

Gigabyte has announced BIOS updates that remove a recently identified backdoor feature in hundreds of its motherboards.

Ionut ArghireJune 5, 2023

Endpoint Security

Organizations Warned of Backdoor Feature in Hundreds of Gigabyte Motherboards

A backdoor feature found in hundreds of Gigabyte motherboard models can pose a significant supply chain risk to organizations.

Eduard KovacsMay 31, 2023

Endpoint Security

Reigning in ‘Out-of-Control’ Devices

Out-of-control devices run the gamut from known to unknown and benign to malicious, and where you draw the line is unique to your organization.

Matt WilsonMay 1, 2023

Page 3 of 122‹ Previous 1 234 5 6 7 Next ›Last »

SECURITYWEEK NETWORK:

ICS:

Endpoint Security

Apple Patches WebKit Flaws Exploited on Older iPhones

Data Protection

Critical ownCloud Flaws Lead to Sensitive Information Disclosure, Authentication Bypass

Endpoint Security

Windows Hello Fingerprint Authentication Bypassed on Popular Laptops

Endpoint Security

Chipmaker Patch Tuesday: Intel, AMD Address Over 130 Vulnerabilities

Endpoint Security

New Intel CPU Vulnerability ‘Reptar’ Can Allow DoS Attacks, Privilege Escalation

Endpoint Security

Intel Sued Over ‘Downfall’ CPU Vulnerability

Endpoint Security

Downfall: New Intel CPU Attack Exposing Sensitive Information

Endpoint Security

Nearly All Modern CPUs Leak Data to New Collide+Power Side-Channel Attack

Endpoint Security

AMD CPU Vulnerability ‘Zenbleed’ Can Expose Sensitive Information

Endpoint Security

New AMI BMC Flaws Allowing Takeover and Physical Damage Could Impact Millions of Devices

Cybercrime

Microsoft Revokes Many Signed Drivers Used by Chinese Cybercriminals

Endpoint Security

MOVEit: Testing the Limits of Supply Chain Security

Endpoint Security

Western Digital Blocks Unpatched Devices From Cloud Services

Endpoint Security

CISA, NSA Share Guidance on Hardening Baseboard Management Controllers

Endpoint Security

Microsoft Makes SMB Signing Default Requirement in Windows 11 to Boost Security

Endpoint Security

Gigabyte Rolls Out BIOS Updates to Remove Backdoor From Motherboards

Endpoint Security

Organizations Warned of Backdoor Feature in Hundreds of Gigabyte Motherboards

Endpoint Security

Reigning in ‘Out-of-Control’ Devices

Featured

Cyberwarfare

ICS at Multiple US Water Facilities Targeted by Hackers Affiliated With Iranian Government

ICS/OT

Breaches by Iran-Affiliated Hackers Spanned Multiple U.S. States, Federal Agencies Say

Cyberwarfare

US Sanctions North Korean Cyberespionage Group Kimsuky

Ransomware

Qlik Sense Vulnerabilities Exploited in Ransomware Attacks

Identity & Access

Okta Broadens Scope of Data Breach: All Customer Support Users Affected

Vulnerabilities

Google Patches Seventh Chrome Zero-Day of 2023

Malware & Threats

Exploitation of Critical ownCloud Vulnerability Begins

Latest News

Cloud Security

Top Guns: Defending Corporate Clouds from Malicious Mavericks

Cybercrime

Russian Pleads Guilty to Role in Developing TrickBot Malware

Cybercrime

North Korean Hackers Have Stolen Over $3 Billion in Cryptocurrency: Report

Incident Response

New Relic Says Hackers Accessed Internal Environment Using Stolen Credentials

ICS/OT

Breaches by Iran-Affiliated Hackers Spanned Multiple U.S. States, Federal Agencies Say

ICS/OT

Congressmen Ask DOJ to Investigate Water Utility Hack, Warning It Could Happen Anywhere

Cybercrime

Staples Confirms ‘Cybersecurity Risk’ Disrupting Online Stores