Here’s an overview of some of last week’s most interesting news, articles and podcast: New DNS vulnerabilities have the potential to impact millions of devices Forescout Research Labs, in partnership with JSOF, disclosed a new set of DNS vulnerabilitie…
Read More Week in review: New DNS vulnerabilities, benefits of cyber threat intelligence, FBI removes web shellsHere’s an overview of some of last week’s most interesting news, articles and reviews: SAP applications are getting compromised by skilled attackers Newly provisioned, unprotected SAP applications in cloud environments are getting discovered and compro…
Read More Week in review: SAP apps under attack, Zero Trust creator talks, Patch Tuesday forecastHere’s an overview of some of last week’s most interesting news and articles: Attackers tried to insert backdoor into PHP source code The PHP development team has averted an attempted supply chain compromise that could have opened a backdoor into many …
Read More Week in review: PHP supply chain attack, common zero trust traps, hardening CI/CD pipelinesHere’s an overview of some of last week’s most interesting news and articles: Microsoft offers rewards for security bugs in Microsoft Teams Microsoft is starting a new Applications Bounty Program, and the first application that they want researchers to…
Read More Week in review: Phishers’ perfect targets, evaluating partner cyber resilience, new issue of (IN)SECUREHere’s an overview of some of last week’s most interesting news and articles: Ongoing Office 365-themed phishing campaign targets executives, assistants, financial departments A sophisticated and highly targeted Microsoft Office 365 phishing campaign i…
Read More Week in review: Attacks on Exchange servers escalate, the influence of the Agile Manifesto, O365 phishingHere’s an overview of some of last week’s most interesting news and articles: March 2021 Patch Tuesday: Microsoft fixes yet another actively exploited IE zero-day As system administrators and security teams around the world worked on ascert…
Read More Week in review: Keeping serverless architecture secure, trends influencing remote work in 2021Here’s an overview of some of last week’s most interesting news and articles: How do I select a cloud security solution for my business? To select a suitable cloud security solution for your business, you need to think about a variety of fa…
Read More Week in review: Exchange Servers under attack, disinformation economics, Patch Tuesday forecastHere’s an overview of some of last week’s most interesting news and articles: Attackers are looking to exploit critical VMware vCenter Server RCE flaw, patch ASAP! The day after VMware released fixes for a critical RCE flaw (CVE-2021-21972)…
Read More Week in review: Kali Linux 2021.1, CNAME-based tracking, VMware vCenter Servers under attackHere’s an overview of some of last week’s most interesting news and articles: Nearly 40% of consumers lost money to phone scams in 2020 Businesses and consumers are relying on the voice call more than ever during the pandemic with voice tra…
Read More Week in review: Most used MITRE ATT&CK tactics, boosting the “Sec” in DevSecOpsHere’s an overview of some of last week’s most interesting news and articles: Vulnerabilities in widely used TCP/IP stacks open IoT, OT devices to attack Forescout researchers have discovered nine vulnerabilities affecting nine different TC…
Read More Week in review: Improving vulnerability triage, RDP attacks soaring, hackers in high demand