A Third of Security Leaders Considering Quitting Their Current Role
Of those thinking of leaving their current organization, a third would do so within the next six months, according to the research
Cyber News, Cyber Threat TrendsOf those thinking of leaving their current organization, a third would do so within the next six months, according to the research
Cyber News, Cyber Threat TrendsFile hosting service Dropbox on Tuesday disclosed that it was the victim of a phishing campaign that allowed unidentified threat actors to gain unauthorized access to 130 of its source code repositories on GitHub. “These repositories included our own copies of third-party libraries slightly modified for use by Dropbox, internal prototypes, and some tools and […]
Cyber News, Cyber Threat TrendsGoing beyond the hype, passwordless authentication is now a reality. Cisco Duo’s passwordless authentication is now generally available across all Duo Editions. “Cisco Duo simplifies the passwordless journey for organizations that want to implement phishing-resistant authentication and adopt a zero trust security strategy.“ – Jack Poller, Senior Analyst, ESG We received tremendous participation and feedback […]
Cyber News, Cyber Threat TrendsThe OpenSSL project released a patch for two high severity vulnerabilities in the world’s most widely used cryptographic library. The project’s maintainers warned users since last week to prepare for a critical patch on November 1, but the severity has since been downgraded following additional testing. Organizations should still determine which of their applications and […]
Cyber News, Cyber Threat TrendsEmergency operations are continuing, but the hospital system failed and cannot be accessed
Cyber News, Cyber Threat TrendsThe OpenSSL project has rolled out fixes to contain two high-severity flaws in its widely used cryptography library that could result in a denial-of-service (DoS) and remote code execution. The issues, tracked as CVE-2022-3602 and CVE-2022-3786, have been described as buffer overrun vulnerabilities that can be triggered during X.509 certificate verification by supplying a specially-crafted email
Cyber News, Cyber Threat TrendsThat bated-breath OpenSSL update is out! It’s no longer rated CRITICAL, but we advise you to patch ASAP anyway. Here’s why…
Cyber News, Cyber Threat TrendsThe guidelines describe methods threat actors use to steal MFA credentials and how to defend against them
Cyber News, Cyber Threat TrendsMicrosoft on Tuesday said it addressed an authentication bypass vulnerability in Jupyter Notebooks for Azure Cosmos DB that enabled full read and write access. The tech giant said the problem was introduced on August 12, 2022, and rectified worldwide on October 6, 2022, two days after responsible disclosure from Orca Security, which dubbed the flaw CosMiss. “In short, […]
Cyber News, Cyber Threat Trends