Common Vulnerabilities and Exposures (CVE) Stories - Page 15

Global Stories

Common Vulnerabilities and Exposures (CVE) stories

Time to rethink how to fix software supply chain vulnerabilities

IT teams are still grappling with the Log4Shell vulnerability, affecting Java enterprise applications and making holiday surprises likely.

By Dean Vaughan • 5 min read • Mon, 7th Nov 2022

Software-as-a-Service

Azul launches a new Saas to secure software supply chain

Azul's Vulnerability Detection, the new SaaS product, continuously detects vulnerabilities in Java applications by eliminating false positives.

By Gaurav Sharma • 4 min read • Fri, 4th Nov 2022

Health Technologies

Claroty reveals new cryptographic key extraction method

Claroty's Team82 exposes major security vulnerabilities in Siemens PLCs and Dataprobe's PDUs, prompting urgent updates.

By Zach Thompson • 3 min read • Fri, 14th Oct 2022

Hyperscale

A deep dive into a Corporate Espionage operation

Rise in hybrid cyberattacks targeting small companies sparks concern over vulnerability exploits, as corporate espionage becomes widespread.

By Martin Zugec • 8 min read • Tue, 4th Oct 2022

Firewalls

Continuous attack attempts discovered on Atlassian Confluence zero day

Following a coordinated disclosure of a zero-day vulnerability by Volexity in Atlassian Confluence, attackers went wild to exploit it.

By Shannon Williams • 3 min read • Mon, 3rd Oct 2022

Malware

Black Lotus Labs discovers new, multipurpose malware

Black Lotus Labs, the threat intelligence team at Lumen, has discovered a new, rapidly growing, multipurpose malware written in the Go programming language.

By Catherine Knowles • 3 min read • Fri, 30th Sep 2022

Malware

Decrease in malware volume, but surge in encrypted malware

The Q2 Internet Security Report found office exploits continue to spread more than any other category of malware.

By Shannon Williams • 3 min read • Thu, 29th Sep 2022

Advanced Persistent Threat Protection

Cybersecurity loopholes prevalent in South East Asia

In terms of the share of vulnerabilities with publicly available exploits, three countries out of top five are located in Southeast Asia.

By Shannon Williams • 4 min read • Tue, 27th Sep 2022

EduTech

Trellix advances threat intelligence with new research centre

Trellix has announced the establishment of the Trellix Advanced Research Center to advance global threat intelligence.

By Catherine Knowles • 3 min read • Tue, 27th Sep 2022

Malware

August's top malware: Emotet knocked off top spot

FormBook is now the most prevalent malware, taking over from Emotet, which has held that position since its reappearance in January.

By Shannon Williams • 6 min read • Fri, 16th Sep 2022

Internet of Things

Rapid7 issues vulnerability advisory for two Baxter devices

Rapid7 has issued a vulnerability advisory for two Baxter Healthcare TCP/IP-enabled medical devices: SIGMA Spectrum Infusion Pump and SIGMA WiFi Battery.

By Gaurav Sharma • 3 min read • Tue, 13th Sep 2022

Malware

How to protect against the growing fileless malware threat

In 2017 the Ponemon Institute reported that fileless attacks are ten times more successful than file-based attacks.

By Carolina Valencia • 5 min read • Wed, 31st Aug 2022

Internet of Things

Internet of Things vulnerability disclosures grew 57%

Vulnerability disclosures impacting IoT devices increased by 57% in the first half of 2022 compared to the previous six months.

By Shannon Williams • 4 min read • Fri, 26th Aug 2022

Malware

Ransomware variants almost double in six months – FortiGuard

Exploit trends demonstrate the endpoint remains a target as work-from-anywhere continues, according to a new report.

By Shannon Williams • 7 min read • Mon, 22nd Aug 2022

EduTech

Check Point Research finds vulnerabilities in Xiaomi's mobile payment mechanism

Check Point Software uncovers vulnerabilities in Xiaomi's mobile payment system, potentially affecting up to 1 billion users. Fixes have been provided.

By Mitchell Hageman • 3 min read • Thu, 18th Aug 2022