ChromeOS Multiple Vulnerabilities
Multiple vulnerabilities were identified in ChromeOS. A remote attacker could exploit some of these vulnerabilities to trigger denial of service...
News
PHP Multiple Vulnerabilities
Multiple vulnerabilities were identified in PHP. A remote attacker could exploit some of these vulnerabilities to trigger remote code execution...
IoT Vulnerabilities Skyrocket, Becoming Key Entry Point for Attackers
Internet of Things (IoT) devices containing vulnerabilities have surged by 136% compared to a year ago, according to Forescout’s The...
NHS Appeals For Blood and Volunteers After Cyber-Attack
The NHS is fighting on several fronts to recover from the impact of a crippling ransomware attack last week, issuing...
Threat Actor Claims to Leak 270GB of New York Times Data
An anonymous threat actor has posted what they claim to be 270GB of source code stolen from the New York...
US-CERT Vulnerability Summary for the Week of June 3, 2024
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and...
High-Severity Vulnerability in SolarWinds Serv-U File Servers
SolarWinds has released security updates addressing a high severity vulnerability (CVE-2024-28995) affecting their Serv-U File Server products.Successful exploitation of the...
Critical Vulnerability in Hypertext Preprocessor (PHP) Software
PHP has released security updates addressing a critical vulnerability (CVE-2024-4577) affecting installations where PHP is used in CGI mode. The...
Security Flaws Found in Popular WooCommerce Plugin
Multiple security vulnerabilities have been found in the WooCommerce Amazon Affiliates (WZone) plugin, according to Patchstack. This premium WordPress plugin, developed...
#Infosec2024: Collaboration is Key to an Effective Security Culture
Security leaders need to foster a culture where their colleagues do more than just follow the rules, according to a...
EmailGPT Exposed to Prompt Injection Attacks
A new vulnerability has been found in the EmailGPT service, a Google Chrome extension and API service that utilizes OpenAI’s...
#Infosec2024: Cyber Resilience Means Being Willing to Learn From a Crisis
Most CISOs now plan on the basis that a cyber-attack or data breach will happen, but there is still work...
#Infosec2024: Go Back to Basics With Risk Management to Tackle AI Risk
Organizations should stick to risk management basics, including well-written policies, effective training and clear accountability, if they want to ensure...
#Infosec2024: Small Firms Need to Work Smarter to Stretch Security Budgets
Smaller firms and charities face the same growing security risks as their larger peers, but lack of budgets and resources...
#Infosec2024: 104 EU Laws Have Different Definitions of Cybersecurity
There are currently over 100 pieces of pending or existing EU legislation, all of which define cybersecurity differently, a leading...
#Infosec2024: Supply Chains Remain Hidden Threat to Business
Supply chains pose a significant but often invisible risk to organizations across all sectors, experts warned. CISOs need to work...
#Infosec2024: Mandatory Ransomware Reporting Would Be Positive Move, Say Experts
Rumors of UK government proposals to make ransomware reporting mandatory have been welcomed by a panel of experts at Infosecurity...
#Infosec2024: Third of Web Traffic Comes from Malicious Bots, Veracity Says
Malicious bots are a scourge for organizations with an online presence, and AI will likely increase this threat, Nigel Bridges,...
#Infosec2024: How to Change Security Behaviors Beyond Awareness Training
Organizations need to focus on changing security behaviors ahead of awareness training, according to experts speaking at Infosecurity Europe 2024.Javvad...
#Infosec2024: Experts Share How CISOs Can Manage Change as the Only Constant
A blend of technical, personal, regulatory and risk management skills are critical to helping the modern CISO succeed at a...
#Infosec2024: AI Red Teaming Provider Mindgard Named UK’s Most Innovative Cyber SME
The jury of the UK’s Most Innovative Cyber SME competition has crowned Mindgard as the 2024 winner.The award was announced...
#Infosec2024: CISOs Need to Move Beyond Passwords to Keep Up With Security Threats
Both enterprises and consumer-facing organizations should look to move away from passwords in favor of more secure, and convenient, forms of...
#Infosec2024: Ransomware Ecosystem Transformed, New Groups “Changing the Rules”
The ransomware ecosystem has changed beyond recognition in 2024, and organizations must adapt their defenses accordingly, warned experts at Infosecurity...
#Infosec24: Go Back to Basics With Risk Management to Tackle AI Risk
Organizations should stick to risk management basics, including well-written policies, effective training and clear accountability, if they want to ensure...
