SecurityWeek2d
Oracle Confirms Cloud Hack
Oracle has confirmed suffering a data breach but the tech giant is apparently trying to downplay the impact of the incident.
SecurityWeek3d
Vulnerabilities Expose Cisco Meraki and ECE Products to DoS Attacks
Cisco fixes two high-severity denial-of-service vulnerabilities in Meraki devices and Enterprise Chat and Email.
SecurityWeek3d
Chinese APT Pounces on Misdiagnosed RCE in Ivanti VPN Appliances
Ivanti misdiagnoses a remote code execution vulnerability and Mandiant reports that Chinese hackers are launching in-the-wild ...
SecurityWeek4d
Microsoft Using AI to Uncover Critical Bootloader Vulnerabilities
Using the Security Copilot tool, Microsoft discovered 20 critical vulnerabilities in widely deployed open-source bootloaders.
SecurityWeek3d
Two CVEs, One Critical Flaw: Inside the CrushFTP Vulnerability Controversy
Two CVEs now exist for an actively exploited CrushFTP vulnerability and much of the security industry is using the ‘wrong one ...
SecurityWeek6d
Zero to Hero – A “Measured” Approach to Building a World-Class Offensive Security Program
How organizations can gauge the readiness and maturity of their security programs to make testing of all types as impactful ...
SecurityWeek3d
Hunters International Ransomware Gang Rebranding, Shifting Focus
The notorious cybercrime group Hunters International is dropping ransomware to focus on data theft and extortion.
SecurityWeek3d
39 Million Secrets Leaked on GitHub in 2024
GitHub has announced new capabilities to help organizations and developers keep secrets in their code protected.
SecurityWeek5d
Hackers Could Unleash Chaos Through Backdoor in China-Made Robot Dogs
The undocumented tunnel allows remote control all robot dogs on the tunnel network and use the vision cameras to see through ...
SecurityWeek4d
North Korea’s IT Operatives Are Exploiting Remote Work Globally
North Korean IT workers expand operations in Europe, using fake identities, freelance platforms, and extortion to infiltrate ...
SecurityWeek4d
Google Brings End-to-End Encrypted Emails to All Enterprise Gmail Users
Gmail now allows enterprise users to send end-to-end encrypted emails to colleagues, and will soon allow sending to any inbox ...
SecurityWeek2d
In Other News: Apple Improving Malware Detection, Cybersecurity Funding, Cyber Command Chief Fired
Apple adding TCC events to Endpoint Security, cybersecurity funding report for Q1 2025, Trump fires the head of NSA and Cyber ...