Atlassian has warned of a critical security flaw in Confluence Data Center and Server that could result in “significant data loss if exploited by an unauthenticated attacker.” Tracked as CVE-2023-22518, the vulnerability is rated 9.1 out of a maximum of 10 on the CVSS scoring system. It has been described as an instance of “improper authorization […]
Cyber News, Cyber Threat Trends
In the ever-evolving cybersecurity landscape, the game-changers are those who adapt and innovate swiftly. Pen test solutions not only supercharge productivity but also provide a crucial layer of objectivity, ensuring efficiency and exceptional accuracy. The synergy between a skilled penetration tester and the precision of pen testing solutions are crucial for staying on top of […]
Cyber News, Cyber Threat Trends
Despite the growing demand for AI transparency, 10 of the better-known models did not score very highly on Stanford’s new Foundation Model Transparency Index.
Cyber News, Cyber Threat Trends
Cybersecurity researchers have uncovered a new set of malicious packages published to the NuGet package manager using a lesser-known method for malware deployment. Software supply chain security firm ReversingLabs described the campaign as coordinated and ongoing since August 1, 2023, while linking it to a host of rogue NuGet packages that were observed delivering a remote access […]
Cyber News, Cyber Threat Trends
The cybersecurity workforce shortage has risen to a record high of just under 4 million despite the cybersecurity workforce growing by almost 10% in the last year. That’s according to the latest Cybersecurity Workforce Study from ISC2, the nonprofit member organization for cybersecurity professionals. The gap between the number of workers needed and the number […]
Cyber News, Cyber Threat Trends
The Security and Exchange Commission (SEC) has filed charges against SolarWinds and its chief information security officer, Timothy G. Brown for misleading investors by not disclosing “known risks” and not accurately representing the company’s cybersecurity measures during and before the 2020 Sunburst cyberattack that affected thousands of customers in government agencies and companies globally. “SolarWinds […]
Cyber News, Cyber Threat Trends
Microsoft’s longstanding practice isn’t enough to handle its vulnerability problem.
Cyber News, Cyber Threat Trends
The top-level domain for the United States — .US — is home to thousands of newly-registered domains tied to a malicious link shortening service that facilitates malware and phishing scams, new research suggests. The findings come close on the heels of a report that identified .US domains as among the most prevalent in phishing attacks […]
Cyber NewsThe Biden administration directed government organizations, including NIST, to encourage responsible and innovative use of AI.
Cyber News, Cyber Threat Trends