Category Security

July 20, 2023THNMoreSoftware security/vulnerabilities Adobe has released another update to address an incomplete fix for a recently disclosed and actively exploited ColdFusion flaw. Tracked as significant drawbacks are: CVE-2023-38205 (CVSS score: 7.5) has been described as an example of poor…

Former Prime Minister Boris Johnson wants or does he want to take over WhatsApp messages? And a few fun-loving girls from Aberdeen have come up with a wicked twist on the sextortion scam. All of this and more is discussed…

A group of industry experts has issued a letter in response to the recent US Cybersecurity and Infrastructure Security Agency (CISA) Guidance Document on Secure by Design. The letter calls on CISA to further integrate and advocate threat modeling within…

Cyber ​​Threat Intelligence (CTI) personnel must deal with an increasing volume of cyber events and incidents, making it difficult to track threats. For example, in its latest version, Data Breach Investigation Report (2023 DBIR), Verizon found over 16,000 security incidents…

An industry-focused report on application programming interface (API) security reveals the perilous state of the financial services sector. especially, of salt security 2023 The State of Financial Services and Insurance API Security Published July 19, 2023, the report reveals critical…

On April 5, 2023, the FBI and the Dutch National Police announced the closure of one of the largest dark web marketplaces, Genesis Market. Dubbed Operation Cookie Monster, the operation resulted in the arrest of 119 people and the seizure…

Chinese spy group APT41 (aka Double Dragon, BARIUM, Winnti) is associated with sophisticated Android surveillanceware known as WyrmSpy and DragonEgg. Cybersecurity firm releases new report look out On July 19, 2023, APT41 highlighted its findings, citing its history of targeting…

July 19, 2023THNMorenetwork security The US cybersecurity and intelligence agency has released a set of recommendations to address security concerns and harden against potential threats regarding 5G standalone network slicing. This was announced by the US Cybersecurity and Infrastructure Security…

In an effort to strengthen cybersecurity protections for American consumers, the Biden-Harris administration announced on July 18, 2023,U.S. Cybertrustmark Programa new voluntary certification and labeling initiative for smart devices. Led by Federal Communications Commission (FCC) Chairman Jessica Rosenworthel, the program…

The attack surface is growing faster than security teams can keep up. To stay ahead, you need to know what is being exposed and where attackers are most likely to strike. With the move to the cloud dramatically increasing the…