Cybercrime
U.S. intelligence agencies believe Chinese hackers recently accessed a database containing sensitive infrastructure data.
Hi, what are you looking for?
SecurityWeek
ICS/OT
Palo Alto Networks firewall vulnerability CVE-2024-3400, exploited as a zero-day, impacts a Siemens industrial product.
Data Protection
Microsoft PlayReady vulnerabilities that could allow rogue subscribers to illegally download movies from popular streaming services.
Vulnerabilities
CrushFTP patches a zero-day vulnerability allowing unauthenticated attackers to escape the VFS and retrieve system files.
Application Security
Malicious hackers are targeting SAP applications at an alarming pace, according to warnings from Onapsis and Flashpoint.
Vulnerabilities
Cisco patches a high-severity Integrated Management Controller vulnerability for which PoC exploit code is available.
Vulnerabilities
Ivanti releases patches for 27 vulnerabilities in the Avalanche MDM product, including critical flaws leading to command execution.
Vulnerabilities
Lack of Open Source Component Management and Control is Putting Production Applications At RiskA significant portion of software is assembled using open source components...
Vulnerabilities
Oracle has decided to delay the release of Java 8 in order to address fundamental security concerns for the beleaguered technology.
ICS/OT
In this episode of the Security Conversations podcast, Cylance Technical Directors Billy Rios and Terry McCorkle join Ryan Naraine to discuss the state of...
Cybercrime
In its Q1 2013 roundup, Trend Micro said that zero-day vulnerabilities, in addition to concentrated attacks that cause high-damage, such as those in South...
Cybercrime
Just five days after Oracle released the patches, criminals have added exploits for Java’s recent flaws to their kits. Security firm F-Secure spotted the...
Vulnerabilities
On Thursday, Rapid7 advised users of Apple’s Safari Web browser to avoid opening “.webarchive” files, after the discovery of a vulnerability in the security...
Cybercrime
WASHINGTON - US authorities charged with overseeing the financial sector are worried about its vulnerability to cyberattacks, they said in a report published Thursday.
Malware & Threats
A malicious campaign that started last summer is once again targeting Uyghur activist groups in China. The latest developments in this year-long fight is...
Malware & Threats
Attackers are exploiting a vulnerability in a popular Website configuration tool to gain remote access to Web servers, Cisco researchers said in an advisory.
Vulnerabilities
A researcher at Rapid7 has discovered that some 114,000 misconfigured serial port servers that connect business IT and industrial control systems to the Internet...
Risk Management
New SSH Risk Assessment Tool Enables Auditors and Security Teams to Collect and Report on SSH-Related Access Compliance Issues
Nation-State
MITRE R&D network hacked in early January by a state-sponsored threat group that exploited an Ivanti zero-day vulnerability.
Vulnerabilities
