Security vulnerabilities stories - Page 16

Users don't have to use Internet Explorer for its legacy to have left you vulnerable to LogCrusher and OverLog.

Blue Connections was chosen by The Dempsey Group to provide a Fortinet network security solution to refresh its ageing network infrastructure.

Claroty's Team82 exposes major security vulnerabilities in Siemens PLCs and Dataprobe's PDUs, prompting urgent updates.

Trellix has announced the establishment of the Trellix Advanced Research Center to advance global threat intelligence.

Coding Labs mechanisms allow developers to move from learning to applying secure coding knowledge more efficiently, leading to fewer code vulnerabilities.

The Vectra Protect team identified a post-exploitation opportunity in August, allowing malicious actors to steal valid user credentials from Microsoft Teams.

The Claroty research team (Team82) has found seven vulnerabilities in Dataprobe's iBoot-PDU, the company's intelligent power distribution unit product.

Vulnerability disclosures impacting IoT devices increased by 57% in the first half of 2022 compared to the previous six months.

Check Point Software uncovers vulnerabilities in Xiaomi's mobile payment system, potentially affecting up to 1 billion users. Fixes have been provided.

Tenable has announced additions to Tenable Cloud Security that represent the next step in assessing threats related to cloud vulnerabilities.

The vulnerability disclosure landscape is highly volatile, with unreported vulnerabilities and inaccurate scoring, according to Flashpoint.

Report reveals heavy use of software vulnerabilities matching opportunistic behaviour of threat actors who search for weak points.

Claroty's research arm (Team82) has uncovered and disclosed two critical vulnerabilities in FileWave's Mobile Device Management (MDM) system.

Rapid7 enhances InsightCloudSec with layered context capabilities, providing security teams with a consolidated, real-time view of risk signals.

Sophos has revealed that the ransomware gang BlackCat has added Brute Ratel, a pentesting tool, to its arsenal of attack tools.

New research from Secureworks reveals that Chinese threat group BRONZE STARLIGHT is using targeted ransomware as a smokescreen for cyber espionage.

Forescout's Vedere Labs has disclosed OT: ICEFALL, naming 56 vulnerabilities affecting devices from 10 operational technology vendors.

Research finds that there has been a 36% increase in cyber attack dwell time, with a median intruder dwell time of 15 days in 2021 versus 11 days in 2020.

The new cloud-based solution gives insights into an organisation's risk posture along with the ability to use drag and drop workflows to orchestrate responses.

MicroFocus has launched Data Center Automation for SaaS delivery, providing cost-effective vulnerability risk and compliance management.