Cyber Defense Advisors

Cyber Threat Trends

  • by
  • November 1, 2023

Alert: F5 Warns of Active Attacks Exploiting BIG-IP Vulnerability

F5 is warning of active abuse of a critical security flaw in BIG-IP less than a week after its public disclosure that could result in the execution of arbitrary system commands as part of an exploit chain. Tracked as CVE-2023-46747 (CVSS score: 9.8), the vulnerability allows an unauthenticated attacker with network access to the BIG-IP system through the management […]

Cyber News, Cyber Threat Trends

The Future of Drone Warfare

Ukraine is using $400 drones to destroy tanks: Facing an enemy with superior numbers of troops and armor, the Ukrainian defenders are holding on with the help of tiny drones flown by operators like Firsov that, for a few hundred dollars, can deliver an explosive charge capable of destroying a Russian tank worth more than […]

Cyber News, Cyber Threat Trends
  • by
  • October 31, 2023

Atlassian Warns of New Critical Confluence Vulnerability Threatening Data Loss

Atlassian has warned of a critical security flaw in Confluence Data Center and Server that could result in “significant data loss if exploited by an unauthenticated attacker.” Tracked as CVE-2023-22518, the vulnerability is rated 9.1 out of a maximum of 10 on the CVSS scoring system. It has been described as an instance of “improper authorization […]

Cyber News, Cyber Threat Trends
  • by
  • October 31, 2023

PentestPad: Platform for Pentest Teams

In the ever-evolving cybersecurity landscape, the game-changers are those who adapt and innovate swiftly. Pen test solutions not only supercharge productivity but also provide a crucial layer of objectivity, ensuring efficiency and exceptional accuracy. The synergy between a skilled penetration tester and the precision of pen testing solutions are crucial for staying on top of […]

Cyber News, Cyber Threat Trends
  • by
  • October 31, 2023

New Index Finds AI Models Are Murky, Not Transparent At All

Despite the growing demand for AI transparency, 10 of the better-known models did not score very highly on Stanford’s new Foundation Model Transparency Index.

Cyber News, Cyber Threat Trends
  • by
  • October 31, 2023

Malicious NuGet Packages Caught Distributing SeroXen RAT Malware

Cybersecurity researchers have uncovered a new set of malicious packages published to the NuGet package manager using a lesser-known method for malware deployment. Software supply chain security firm ReversingLabs described the campaign as coordinated and ongoing since August 1, 2023, while linking it to a host of rogue NuGet packages that were observed delivering a remote access […]

Cyber News, Cyber Threat Trends
  • by
  • October 31, 2023

Cybersecurity workforce shortage reaches 4 million despite significant recruitment drive

The cybersecurity workforce shortage has risen to a record high of just under 4 million despite the cybersecurity workforce growing by almost 10% in the last year. That’s according to the latest Cybersecurity Workforce Study from ISC2, the nonprofit member organization for cybersecurity professionals. The gap between the number of workers needed and the number […]

Cyber News, Cyber Threat Trends
  • by
  • October 31, 2023

SEC sues SolarWinds and its CISO for fraudulent cybersecurity disclosures

The Security and Exchange Commission (SEC) has filed charges against SolarWinds and its chief information security officer, Timothy G. Brown for misleading investors by not disclosing “known risks” and not accurately representing the company’s cybersecurity measures during and before the 2020 Sunburst cyberattack that affected thousands of customers in government agencies and companies globally. “SolarWinds […]

Cyber News, Cyber Threat Trends
  • by
  • October 31, 2023

20 Years Later, Is Patch Tuesday Enough?

Microsoft’s longstanding practice isn’t enough to handle its vulnerability problem.

Cyber News, Cyber Threat Trends