Non-Human Access is the Path of Least Resistance: A 2023 Recap
2023 has seen its fair share of cyber attacks, however there's one attack vector that proves to be more prominent...
Month: December 2023
Playbook: Your First 100 Days as a vCISO – 5 Steps to Success
In an increasingly digital world, no organization is spared from cyber threats. Yet, not every organization has the luxury of...
Lazarus Group Using Log4j Exploits to Deploy Remote Access Trojans
The notorious North Korea-linked threat actor known as the Lazarus Group has been attributed to a new global campaign that...
New Critical RCE Vulnerability Discovered in Apache Struts 2 – Patch Now
Apache has released a security advisory warning of a critical security flaw in the Struts 2 open-source web application framework...
Apple Products Multiple Vulnerabilities
Multiple vulnerabilities were identified in Apple Products. A remote attacker could exploit some of these vulnerabilities to trigger denial of service...
Apache Warns of Critical Vulnerability in Struts 2
Apache has warned customers of a critical remote code execution (RCE) vulnerability in its popular Struts 2 framework.Apache Struts 2...
Threat Actor Targets Recruiters With Malware
Proofpoint has warned recruiters of a skilled threat actor targeting them with emails designed to deploy malware.TA4557 is a financially...
Backup Migration WordPress Plugin Flaw Impacts 90,000 Sites
Security researchers have warned users of a popular WordPress plugin that they need to patch urgently or risk their site...
Widespread Security Flaws Blamed for Northern Ireland Police Data Breach
The most significant data breach that has ever occurred in the history of UK policing was due to force-wide security...
Ukraine’s Largest Phone Operator Hack Tied to War With Russia
Kyivstar, Ukraine’s leading mobile network operator, is experiencing a significant shutdown allegedly due to a cyber-attack.The company, owned by Amsterdam-based...
Non-Human Access is the Path of Least Resistance: A 2023 Recap
2023 has seen its fair share of cyber attacks, however there's one attack vector that proves to be more prominent...
Playbook: Your First 100 Days as a vCISO – 5 Steps to Success
In an increasingly digital world, no organization is spared from cyber threats. Yet, not every organization has the luxury of...
New Critical RCE Vulnerability Discovered in Apache Struts 2 – Patch Now
Apache has released a security advisory warning of a critical security flaw in the Struts 2 open-source web application framework...
Lazarus Group Using Log4j Exploits to Deploy Remote Access Trojans
The notorious North Korea-linked threat actor known as the Lazarus Group has been attributed to a new global campaign that...
CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA Adds Two Known Exploited Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: Microsoft Releases Security Updates for Multiple Products
Microsoft Releases Security Updates for Multiple Products Microsoft has released security updates to address vulnerabilities in multiple products. A cyber...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: Atlassian Releases Security Advisories for Multiple Products
Atlassian Releases Security Advisories for Multiple Products Atlassian has released security updates to address vulnerabilities affecting multiple Atlassian products. A...
CISA: CISA and International Partners Release Advisory on Russia-based Threat Actor Group, Star Blizzard
CISA and International Partners Release Advisory on Russia-based Threat Actor Group, Star Blizzard Today, the Cybersecurity and Infrastructure Security Agency...
CISA: The Apache Software Foundation Updates Struts 2
The Apache Software Foundation Updates Struts 2 The Apache Software Foundation has released security updates to address a vulnerability (CVE-2023-50164)...
CISA: Apple Releases Security Updates for Multiple Products
Apple Releases Security Updates for Multiple Products Apple has released security updates for Safari, iOS and iPadOS, Sonoma, Ventura, and...
CISA: Adobe Releases Security Updates for Multiple Products
Adobe Releases Security Updates for Multiple Products Adobe has released security updates to address multiple vulnerabilities in Adobe software. A...
CISA: CISA Releases Two Industrial Control Systems Advisories
CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on December 12, 2023. These...
CISA: CISA Releases SCuBA Google Workspace Secure Configuration Baselines for Public Comment
CISA Releases SCuBA Google Workspace Secure Configuration Baselines for Public Comment Today, CISA released the draft Secure Cloud Business Applications...
