Security Bulletin

See a photo gallery of highlights from the DevNet Zone at Cisco Live EMEA 2024 in Amsterdam.

New data shows higher-than-expected cybersecurity growth in the Middle East, Turkey, and Africa region, thanks to AI and other factors.

CyberScoop reports that strengthening defenses against advanced persistent threat operations, bolstering the cybersecurity baseline of critical infrastructure organizations, and addressing risks associated with emerging technologies, have been noted...

Telecommunications firms across the U.S. will be required to inform the Federal Communications Commission, the FBI, and the U.S. Secret Service regarding data breaches within seven days of identifying compromise under the finalized data breach...

The U.S.

Facebook Marketplace had a portion of its database claimed to be exposed by IntelBroker, Hackread reports.

BleepingComputer reports that almost 700 Ivanti servers have been compromised with the novel DSLog backdoor in attacks leveraging the server-side request forgery flaw affecting the SAML component of Ivanti Connect Secure, Policy Secure, and ZTA...

Organizations have been warned by the Cybersecurity and Infrastructure Security Agency regarding ongoing attacks exploiting a cross-site scripting vulnerability impacting various versions of the Roundcube email server, tracked as CVE-2023-43770...

Third-party vendor IMS told BoA last fall that data from “deferred compensation plans" may have been compromised.

This month we got patches for 80 vulnerabilities. Of these, 5 are critical , and 2 are being exploited according to Microsoft.

I’m on the heels of another incredible week with our customers and partners at Cisco Live EMEA. In this latest blog I’ll recap the new security innovations we announced and my main takeaways for partners.

Cascading critical CVEs, cyberattacks, and delayed patching are plaguing Ivanti VPNs, and forcing cybersecurity teams to scramble for solutions. Researchers are unimpressed.