Cloud SecurityTeamTNT aims to take down cloud-based Docker containers, Kubernetes clustersSteve ZurierSeptember 18, 2024Security pros say TeamTNT’s resurgence shows that attackers will always find new ways to attack the cloud.
Network SecurityServiceNow ‘knowledge base’ misconfiguration leaks sensitive dataSteve ZurierSeptember 17, 2024Security pros say KBs can be easily misconfigured – data on more than 1,000 KBs exposed.
RansomwareRansomHub releases 487GB of Kawasaki Motors Europe dataSteve ZurierSeptember 16, 2024Security pros say U.S. companies should stay vigilant as RansomHub remains active worldwide.
Vulnerability ManagementGitLab patches bug that could expose a CI/CD pipeline to supply chain attackSteve ZurierSeptember 13, 2024Security pros called this GitLab patch an urgent one because an exploited CI/CD pipeline could lead to a serious supply chain compromise.
Security Staff Acquisition & DevelopmentPercentage of women, minorities in tech workforce unchanged since 2005Steve ZurierSeptember 12, 2024Women still make up only 22% of the high tech workforce, according to EEOC.
Network SecurityLazarus Group tricks developers to load malware via fake recruiting testsSteve ZurierSeptember 11, 2024Latest iteration from North Korean APT to lure job seekers to download malware.
Vulnerability ManagementDisinformation reigns ahead of Harris-Trump presidential debateSteve ZurierSeptember 10, 2024From potential XXS flaws experienced by Gallup that could spread disinformation to false claims about Haitian immigrants eating household pets, it’s game on.
Network SecurityProgress Software patches 10.0 vulnerability in LoadMaster releasesSteve ZurierSeptember 9, 2024Because of the high CVSS score and recent issues at Progress with MOVEit transfer, security pros say teams should patch immediately.
Vulnerability ManagementApache patches OFBiz bypass vulnerabilitySteve ZurierSeptember 6, 2024Security pros say this flaw could be integrated into a botnet, so teams should patch immediately.
RansomwarePlanned Parenthood confirms Montana cyberattack claimed by RansomHubSteve ZurierSeptember 5, 2024RansomHub threatens to leak 93 gigabytes of data by if its demands are not met.