Vulnerability ManagementDem Bones, Leather, QNAP, CISA, Microsoft, PyPI, France, AirBnB, Josh Marpet and More – SWN #368March 12, 2024Dem Bones, Leather, QNAP, CISA, Microsoft, PyPI, France, AirBnB, Josh Marpet, and More are on this edition of the Security Weekly News.
Network SecurityQNAP fixes three bugs on NAS devices, one critical authentication flawSteve ZurierMarch 11, 2024The critical flaw is an authentication bug could let users compromise the security of the system.
Vulnerability ManagementApple’s 17.4 emergency update patches two iPhone zero-daysSteve ZurierMarch 6, 2024Security pros say the zero-days are serious because nation-states tend to exploit flaws to launch spyware attacks on high-risk individuals.
PrivacyPredator spyware infrastructure dismantled anewSC StaffMarch 5, 2024Numerous delivery servers leveraged by Predator spyware have been taken down by the spyware's operators following separate.
API securityUpdated NIST Cybersecurity Framework praisedSC StaffMarch 4, 2024Cybersecurity experts have lauded the National Institute of Standards and Technology's newly released Cybersecurity Framework 2.0 for expanded coverage and additional resources.
Network SecurityIvanti attacks linked to espionage group targeting defense contractorsSimon HenderyFebruary 29, 2024TTPs and malware code overlaps support suspicions Chinese nation-state actors are behind an ongoing campaign to compromise Ivanti network appliances.
Network SecurityUbiquiti router users urged to secure devices targeted by Russian hackersSimon HenderyFebruary 28, 2024The routers’ utility makes them “popular for both consumers and malicious cyber actors,” security agencies warn.