Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
SYN Ventures is leading a $23 million Series A investment in RevealSecurity, a startup building technology to thwart malicious insider threats. [Read More]
AutomationDirect has patched several high-severity vulnerabilities in its PLC and HMI products. [Read More]
CyberArk shares details on a Windows Remote Desktop Services vulnerability that Microsoft had to patch twice. [Read More]
A critical vulnerability in the Ninja Forms plugin can be exploited to execute arbitrary code without authentication. [Read More]
Disguised as a cryptocurrency miner, Malibot focuses on stealing financial information, cryptocurrency wallets, and personally identifiable information (PII). [Read More]
Big-game malware hunters at Volexity call attention to a sophisticated Chinese APT caught recently exploiting a Sophos firewall zero-day to plant backdoors and launch man-in-the-middle attacks. [Read More]
Microsoft has dismissed reports about June 14 being the last Patch Tuesday, clarifying that the rollout of the Windows Autopatch service seems to be causing some confusion. [Read More]
Impacting both Email Security Appliance (ESA) and Secure Email and Web Manager, the bug could allow a remote attacker to bypass authentication and log in to the web interface of a vulnerable device. [Read More]
Radian Capital leads a $15 million Series A investment in threat intelligence startup GreyNoise. [Read More]
An Israeli startup promising technology to help developers simplify security has banked an eye-opening $38.5 million in seed-stage funding. [Read More]
FEATURES, INSIGHTS // Vulnerabilities
Laws to support swift and automatic updates for all devices, and consequence to organizations that fail to ensure their IoT devices are secure, would be a big step forward for IoT security.
With a software composition analysis (SCA) tool in place, security teams can quickly scan an information repository and know where vulnerable software is being used.
The "Reaper" IoT botnet is holding itself up as a blinky light in front of our faces, reminding the InfoSec community that we really need to get ahead of IoT madness.
We need to consider whether traditional approaches to vulnerability management are still viable and if just upgrading existing methods or tools is sufficient.
Vendors, practitioners and security experts must all work closely together to combat the well-funded actors who pose a threat to medical devices.
Why are even the most security-conscious organizations being compromised, and what does it mean for everyone else?
DUHK and ROCA are both implementation-specific vulnerabilities concerning one of my favorite topics, random number generators.
The end user community is at the mercy of security researchers to act responsibly in order to limit the potential for their findings to be used for malicious purposes.
With greater awareness about POS system attacks, operations against third-party suppliers, and the vulnerabilities of public or semi-public Wi-Fi networks, companies can do a lot to mitigate risk and ensure safer journeys for travelers.
One of the crucial benefits of blockchain is its distributed capabilities, which mean there isn’t one centralized target to hack.
Get the Daily Briefing
- Emergency Chrome 103 Update Patches Actively Exploited Vulnerability
- Experts: California Lacked Safeguards for Gun Owner Info
- Dutch Uni Gets Cyber Ransom Money Back... With Interest
- QuSecure Scores Post-Quantum Cybersecurity Contract Worth More Than $100M Annually
- Google: Half of 2022's Zero-Days Are Variants of Previous Vulnerabilities
- Google Blocks Domains of Hack-for-Hire Groups in Russia, India, UAE
- Cyberattack Disrupts Unemployment Benefits in Some States
- Oak9 Lands $8 Million in New Venture Investment
- North Korea Lazarus Hackers Blamed for $100 Million Horizon Bridge Heist
- Token Raises $13 Million for Its Biometric Authentication Ring
Copyright © 2022 Wired Business Media. All Rights Reserved. Privacy Policy