Hi, what are you looking for?
What’s the connection between British hacker Daniel Cuthbert and the annual Pwn2Own challenge? CanSecWest organizer and security industry “dinosaur” Dragos Ruiu explains why Pwn2Own was created and shares his thoughts on the evolution of hacking and exploit writing.
Subscribe to the Podcast RSS Feed (Opens New Window)
No one combatting cybercrime knows everything, but everyone in the battle has some intelligence to contribute to the larger knowledge base.
Our networks have become atomized which, for starters, means they’re highly dispersed. Not just in terms of the infrastructure – legacy, on-premises, hybrid, multi-cloud, and edge.
How threat intelligence is critical when justifying budget for GRC personnel, and for threat intelligence, incident response, security operations and CISO buyers.
Hackers rarely hack in anymore. They log in using stolen, weak, default, or otherwise compromised credentials. That’s why it’s so critical to break the password dependency cycle. But how can this be done?
Cybersecurity-related risk is a top concern, so boards need to know they have the proper oversight in place. Even as first-timers, successful CISOs make for successful board members.
VMware vRealize Log Insight vulnerability allows an unauthenticated attacker to take full control of a target system.
Lexmark warns of a remote code execution (RCE) vulnerability impacting over 120 printer models, for which PoC code has been published.
Apple rolled out iOS 16.3 and macOS Ventura 13.2 to cover serious security vulnerabilities.
Technical details published for an Arm Mali GPU flaw leading to arbitrary kernel code execution and root on Pixel 6.
Microsoft is urging customers to install the latest Exchange Server updates and harden their environments to prevent malicious attacks.
Security researchers have observed an uptick in attacks targeting CVE-2021-35394, an RCE vulnerability in Realtek Jungle SDK.
Apple’s iOS 12.5.7 update patches CVE-2022-42856, an actively exploited vulnerability, in old iPhones and iPads.
Google has awarded more than $25,000 to the researchers who reported the vulnerabilities patched with the release of the latest Chrome update.
