Keeping data secure in the age of generative AI

Generative AI is reshaping industries, but with innovation comes new data security challenges. Are your cybersecurity practices keeping up?

By Rob Juncker, CTO of Code42, now part of Mimecast • Sept. 16, 2024

Microsoft, working with security partners, pledges better deployment, testing collaboration

Following a summit with U.S. and European partners, the company is working to build additional resiliency features to prevent a repeat of the historic global IT outage linked to CrowdStrike.

By David Jones • Updated Sept. 13, 2024

Most OT environments have at least 4 remote access tools, report finds

Claroty warned the prevalence of remote access tool sprawl, often linked to ransomware, raises the risk of malicious activity.

By David Jones • Sept. 12, 2024

How to manage the rising tide of CVEs

As the volume and complexity of vulnerabilities grows, organizations are struggling to manage and mitigate the security defects. 

By Rosalyn Page • Sept. 11, 2024

SonicWall firewall CVE exploits linked to ransomware attacks

Active exploits aimed at firewalls mark yet another string of attacks targeting devices with high-value initial access, researchers said.

By Matt Kapko • Sept. 10, 2024

Feds warn of broad Russia-linked CVE exploits targeting critical infrastructure

Attackers operating under the direction of Russia’s military intelligence service are targeting governments, finance, transportation, energy and healthcare.

By Matt Kapko • Sept. 6, 2024

Volt Typhoon exploiting zero-day in campaign targeting ISPs, MSPs

Researchers from Black Lotus Labs warn the state-linked adversary is exploiting a vulnerability in Versa Director using custom web shells against the telecom sector.

By David Jones • Aug. 28, 2024

CISA warns of active exploits hitting popular CI/CD tool Jenkins

Researchers at CloudSEK and Juniper Networks said a ransomware group targeted Brontoo Technology Solutions by exploiting the critical CVE. The attack disrupted banks in India.

By Matt Kapko • Aug. 20, 2024

SolarWinds Web Help Desk CVE scores a 9.8

SolarWinds urged customers to patch the vulnerability that could allow an attacker to run commands on a host machine, while CISA added the CVE to its KEV catalog.

By David Jones • Aug. 16, 2024

Microsoft Windows CVE triggers blue screen of death, researchers find

Researchers from Fortra on Monday disclosed the flaw in the common log file system, which can lead to repeated crashes and potential data loss. 

By David Jones • Updated Aug. 13, 2024

Attackers target legacy Cisco Smart Install features

Thousands of Cisco Smart Install IPs remain exposed to the internet as CISA warns that organizations are still employing weak passwords.

By David Jones • Aug. 12, 2024

CrowdStrike pursuing deal to buy patch management specialist Action1

The security firm is still working to overhaul its internal software development practices following the July 19 global IT outage involving millions of Microsoft Windows devices.

By David Jones • Aug. 9, 2024

CrowdStrike outage renews supply chain concerns, federal officials say

The White House and the U.S. Government Accountability Office are raising questions about the resilience of the software supply chain and memory safety vulnerabilities.

By David Jones • Aug. 2, 2024

Nearly 1 in 3 software development professionals unaware of secure practices

The knowledge gap, identified in a Linux Foundation report, comes as malicious hackers increasingly target critical vulnerabilities.

By David Jones • July 16, 2024

CISA calls for elimination of OS command injection vulnerabilities

Threat groups target vulnerabilities in widely used network devices. CISA’s latest advisory urges software makers to eliminate them at the source.

By Matt Kapko • July 11, 2024

MOVEit legal liabilities, expenses pile up for Progress Software

The prospective financial hit from a widely exploited vulnerability in the file-transfer service is growing. Progress confronts lawsuits, regulator scrutiny and government investigations.

By Matt Kapko • July 10, 2024

Microsoft warns of elevated risk in Rockwell Automation PanelView Plus CVEs

Microsoft researchers warn the vulnerabilities can be exploited, potentially resulting in remote code execution and denial of service.

By David Jones • July 3, 2024

Cisco Nexus devices zero day raises alarms despite CVSS score

Though the NX-OS CVE only has a 6.0 score, a suspected espionage actor is deploying custom malware to exploit a command injection vulnerability in a range of switching devices.

By David Jones • July 2, 2024

700,000 OpenSSH servers vulnerable to remote code execution CVE

The newly discovered vulnerability can be exploited by attackers to gain unauthenticated remote code execution with root privileges, Qualys researchers said.

By Matt Kapko • July 1, 2024

Memory-unsafe code runs rampant in critical open-source projects

CISA and the FBI are part of an international effort to eliminate memory-unsafe languages which were found in more than half of critical open-source projects.

By David Jones • June 27, 2024

Progress discloses more MOVEit CVEs, one year after 2023’s fiasco

The enterprise software vendor and researchers have not observed active exploitation, but attempts are underway. Concerns are amplified by a spree of attacks that hit MOVEit last year.

By Matt Kapko • Updated June 27, 2024

Cloud security becoming top priority for companies worldwide

Application sprawl and the sensitive nature of the data organizations place in the cloud is complicating security, Thales found.

By David Jones • June 25, 2024

Nearly 150,000 ASUS routers potentially exposed to critical vulnerability

Researchers said the CVE, which has a CVSS score of 9.8, raises additional concerns about the security of edge, small office and home office devices.

By David Jones • June 21, 2024

TellYouThePass ransomware widely targets vulnerable PHP instances

CISA added the CVE to its known exploited vulnerabilities catalog, but so far most of the infected hosts have been observed in China.

By David Jones • June 14, 2024

Microsoft president promises significant culture changes geared towards security

Brad Smith detailed plans to tie compensation to security, as lawmakers raised new questions about the company’s commitment to transparency.

By David Jones • June 14, 2024