Security Bulletin

Here’s a quick look at the pros and cons of ChatGPT and how developers can get started.

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

Cisco's $28 billion purchase of Splunk was the biggest story, but other security majors made strategic acquisitions as well in a better-than-expected quarter.

Financial services organizations migrating applications to the cloud need to think about cloud governance, applying appropriate policies and oversight, and compliance and regulatory requirements.

October's CVE update is here. Here's which security vulnerabilities to patch now to exorcise your Microsoft systems demons.

WhatsApp dismisses messages of potential Jew-targeted cyberattacks NBC News reports that WhatsApp has repudiated messages forwarded on its platform warning about phone hacking attacks aimed at Jewish people.

Mounting cyberattacks have been deployed by hacktivist groups against websites of the Israeli government and media following attacks launched by the Palestinian military group Hamas during the weekend, according to BNN Bloomberg.

SecurityWeek reports that more than 17,000 WordPress sites, including 9,000 sites vulnerable to the recently addressed TagDiv Composer front-end page builder plugin flaw, tracked as CVE-2023-3169, have been infected as part of the long-running Balada...

States transitioning into a whole-of-state cybersecurity approach were noted by officials to be hampered by the lack of sustainable funding and cybersecurity workers, reports StateScoop.

Google has added capture the flag events for determining flaws impacting the Chrome browser's V8 JavaScript rendering engine and Kernel-based Virtual Machines as part of its expanded vulnerability rewards program, according to SecurityWeek.

Vulnerabilities impacting the widely used curl open source tool used for various network protocols will be addressed in an update to be issued on Wednesday, reports The Record, a news site by cybersecurity firm Recorded Future.

Malicious code execution and data compromise are possible with the exploitation of several high-severity bugs impacting ConnectedIO's ER2000 edge routers, The Hacker News reports.