Security Bulletin

With a PoC for exploiting the file sharing software already available, users are urged to patch immediately.

Here’s why a common operational platform based on SASE can solve the lion’s share of cloud security challenges for companies.

Mozilla has released security updates to address vulnerabilities in Thunderbird and Firefox. A cyber threat actor could exploit one of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the...

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2023-22527 Atlassian Confluence Data Center and Server Template Injection Vulnerability These types of vulnerabilities...

On International Day of Education, Cisco is proud to spotlight its non-profit partnerships with Code.org, Darsel, Raspberry Pi Foundation, and Science Buddies, in honor of the incredible work these organizations are doing to advance education...

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

In the second of our new technical thought leadership series, Sophos X-Ops takes a detailed look at anti-ransomware techniques

Twenty-six billion records amounting to 12TB of data, a significant amount of which was compiled from prior data breaches, have been exposed as part of a colossal leak, which has been regarded as the Mother of all Breaches, according to Cybernews.

North Korean state-sponsored threat actor ScarCruft, also known as APT37, Ruby Sleet, Ricochet Chollima, InkySquid, and RedEyes, has targeted media outfits and individuals knowledgeable in North Korean affairs in a new attack campaign deploying the...

Numerous Android and Java apps leveraging abandoned open-source libraries, including all technologies based on Apache Maven, could be compromised through the novel MavenGate software supply chain attack technique, reports The Hacker News.

Cryptowallet-targeting macOS backdoor spread via cracked software BleepingComputer reports that threat actors have leveraged cracked macOS software to facilitate the distribution of information-stealing malware targeting cryptocurrency wallets on...