Daily Vulnerability Trends: Thu Oct 12 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2023-38545 No description provided CVE-2023-43641libcue provides an API for parsing and extracting...
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2023-38545 No description provided CVE-2023-43641libcue provides an API for parsing and extracting...
Simpson Manufacturing disclosed via a SEC 8-K filing a cybersecurity incident that has caused disruptions in its operations, which are...
Hackers are once again abusing LinkedIn Smart Links in phishing attacks to bypass protection measures and evade detection in attempts...
A new malware has been posing as a legitimate caching plugin to target WordPress sites, allowing threat actors to create...
This article is written by Rob Sobers, Varonis. Microsoft Copilot has been called one of the most powerful productivity tools...
The BianLian extortion group claims to have stolen 210GB of data after breaching the network of Air Canada, the country's...
Microsoft Defender for Endpoint now uses automatic attack disruption to isolate compromised user accounts and block lateral movement in hands-on-keyboard...
Microsoft says a Chinese-backed threat group tracked as 'Storm-0062' (aka DarkShadow or Oro0lxy) has been exploiting a critical privilege escalation...
Security researchers have shared evidence of a new APT group that targeted mainly Taiwanese organizations in a cyber-espionage campaign lasting...
Flagstar Bank, a prominent Michigan-based financial services provider, has warned 837,390 of its US customers about a data breach that...
Nearly half (47%) of global CISOs now report to their CEO, and the vast majority (78%) are backed by a...
A leading Spanish airline has told some of its customers to cancel their payment cards after revealing their details were...
FortiGuard Labs, the research arm of security firm Fortinet, has uncovered a significant evolution in the IZ1H9 Mirai-based DDoS campaign. Discovered...
Threat actors have been exploiting a zero-day vulnerability in the HTTP/2 protocol since August to launch the largest DDoS attacks...
Microsoft has fixed three zero-day vulnerabilities in its latest security update round this month, all of which are being actively...
The education sector has been confirmed as a prime target for threat actors, with 29% of attacks originating from vulnerability...
In a recent security alert, the team behind the popular open-source tool curl has announced the release of fixes for...
The US government has issued guidance on securing open-source software (OSS) in operational technology (OT) critical infrastructure environments.The joint advisory,...
IT security decision makers are concerned about the use of AI by cyber-criminals, particularly surrounding deepfakes, and many believe AI...
Google on Tuesday announced the ability for all users to set up passkeys by default, five months after it rolled...
A previously undocumented threat actor of unknown provenance has been linked to a number of attacks targeting organizations in the...
A sophisticated Magecart campaign has been observed manipulating websites' default 404 error page to conceal malicious code in what's been...
Amazon Web Services (AWS), Cloudflare, and Google on Tuesday said they took steps to mitigate record-breaking distributed denial-of-service (DDoS) attacks...
Certain online risks to children are on the rise, according to a recent report from Thorn, a technology nonprofit whose...