Identity Management Day: Safeguarding your digital identity
Imagine waking up one day to find that someone has stolen your identity, opened credit cards in your name, or […]
Identity Management Day: Safeguarding your digital identity Read More »
Cloudflare’s commitment to CISA Secure-By-Design pledge: delivering new kernels, faster
As cyber threats continue to exploit systemic vulnerabilities in widely used technologies, the United States Cybersecurity and Infrastructure Agency (CISA)
Cloudflare’s commitment to CISA Secure-By-Design pledge: delivering new kernels, faster Read More »
SpotBugs Access Token Theft Identified as Root Cause of GitHub Supply Chain Attack
The cascading supply chain attack that initially targeted Coinbase before becoming more widespread to single out users of the “tj-actions/changed-files”
SpotBugs Access Token Theft Identified as Root Cause of GitHub Supply Chain Attack Read More »
Have We Reached a Distroless Tipping Point?
There’s a virtuous cycle in technology that pushes the boundaries of what’s being built and how it’s being used. A
Have We Reached a Distroless Tipping Point? Read More »
Critical Ivanti Flaw Actively Exploited to Deploy TRAILBLAZE and BRUSHFIRE Malware
Ivanti has disclosed details of a now-patched critical security vulnerability impacting its Connect Secure that has come under active exploitation
Critical Ivanti Flaw Actively Exploited to Deploy TRAILBLAZE and BRUSHFIRE Malware Read More »
OPSEC Failure Exposes Coquettte’s Malware Campaigns on Bulletproof Hosting Servers
A novice cybercrime actor has been observed leveraging the services of a Russian bulletproof hosting (BPH) provider called Proton66 to
OPSEC Failure Exposes Coquettte’s Malware Campaigns on Bulletproof Hosting Servers Read More »
CERT-UA Reports Cyberattacks Targeting Ukrainian State Systems with WRECKSTEEL Malware
The Computer Emergency Response Team of Ukraine (CERT-UA) has revealed that no less than three cyber attacks were recorded against
CERT-UA Reports Cyberattacks Targeting Ukrainian State Systems with WRECKSTEEL Malware Read More »
Critical Flaw in Apache Parquet Allows Remote Attackers to Execute Arbitrary Code
A maximum severity security vulnerability has been disclosed in Apache Parquet’s Java Library that, if successfully exploited, could allow a
Critical Flaw in Apache Parquet Allows Remote Attackers to Execute Arbitrary Code Read More »
Popular VPNs are routing traffic via Chinese companies, including one with link to military
Up to one in five of the most popular mobile VPNs for iOS last year are owned by Chinese companies