Browsing Category
Cybersecurity
CISA Warns of Hackers Exploiting Multiple Vulnerabilities in the Zimbra…
The Cybersecurity and Infrastructure Security Agency (CISA) has published a new advisory warning of threat actors actively…
RubyGems Mandates MFA for Top-100 Package Maintainers
The official package manager for the Ruby programming language has announced it has started mandating multi-factor authentication…
Organizations Struggle to Fend Off Cloud and Web Attacks: Proofpoint…
Many organizations are struggling to adequately protect the cloud environments implemented during the pandemic and adapt their…
Identity Scams Soar to Make 2021 a Record Year
Google Voice scams led the way in what was a record year for identity-related fraud in 2021, according to the Identity Theft…
USBs Still a Major OT Infection Vector
Removable media represents the second greatest threat to operational technology (OT) systems so far this year, according to new…
Bug Bounty Giant Slams Quality of Vendor Patching
The world’s largest vendor-agnostic bug bounty program has warned that poor quality vendor patching is exposing organizations to…
Two Additional Malicious Python Libraries Found on PyPI Repository
Two more malicious Python packages have been discovered in the Python Package Index (PyPI) repository, days after security…
Healthcare Provider Issues Warning After Tracking Pixels Leak Patient Data
US healthcare provider Novant Health has notified patients that their protected health information may have been leaked through a…
New Attack Weaponizes PLCs to Hack Enterprise and OT Networks
A new attack can weaponize programmable logic controllers (PLCs) to exploit engineering workstations and subsequently invade OT…
#DEFCON: Electrovolt Exploits Against Electron Desktop Apps Exposed
Electron is a widely used open source technology for building applications, making it a particularly lucrative attack target.
In…