Security Bulletin

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-4671 Google Chromium in Visuals Use-After-Free Vulnerability These types of vulnerabilities are frequent attack...

Companies need to support their developers and coders need to double-down on the value of high-quality source code to the business.

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

I was asked if I could provide mote details on the following sentence from my diary entry " nslookup's Debug Options":

Dell began notifying customers this week after database records surfaced on a cybercrime forum.

Researchers discovered seven vulnerabilities — including an unauthenticated RCE issue — in widely deployed Telit Cinterion modems.

Enterprises are increasingly recognizing that a CISO's skills and experience building risk-based cyber programs translate well to other C-suite positions.

CISA's agreement is voluntary and, frankly, basic. Signatories say that's a good thing.

In a field thick with cybersecurity startups showing off how they use AI and LLMs, Reality Defender stood out for its tool for detecting and labeling deepfakes and other artificial content.

In part 2, FortiGuard Labs' Derek Manky discusses cyberattacks via known vulnerabilities that have patches available, among other topics.

FortiGuard Labs' Derek Manky discusses how quickly cybercriminals are exploiting new industry vulnerabilities.

While Google confirmed that the bug exists in the wild, security researchers say there has yet to have been an instance of active exploitation.