Security vulnerabilities stories

Microsoft is rolling out patches for 90 vulnerabilities this November, including critical remote code execution flaws and several in-the-wild exploits.

CloudSEK warns that the Androxgh0st botnet has significantly expanded its reach, now targeting critical vulnerabilities in various systems and IoT devices.

The latest Hacker-Powered Security Report reveals 48% of security professionals cite AI as their top threat, amid a surge in AI-related vulnerabilities.

Symbiotic Security has secured USD $3 million in pre-seed funding to launch a software that enhances security during the software development process.

Cequence Security has uncovered a major vulnerability in a leading food and drug retailer's IT systems, exposing sensitive data across four subdomains.

Mindgard has uncovered serious security flaws in Microsoft's Azure AI Content Safety Service, enabling potential attacks to undermine its security measures.

Kaspersky's ICS CERT has revealed critical vulnerabilities in Unisoc SoCs, heightening risks of remote hijacking in devices.

Trend Micro has launched the Pwn2Own Ireland contest to uncover vulnerabilities in AI-enabled consumer devices, supported by Meta, Synology, and QNAP.

A Juniper Research study predicts satellite IoT revenue will surge from USD $2.9 billion in 2024 to USD $5.8 billion by 2027, driven by demand for remote connectivity.

Tenable has revealed a medium-severity vulnerability in Open Policy Agent for Windows that exposes user credentials, urging updates to version 0.68.0.

SailPoint Technologies has launched its Identity Security Cloud feature, Privileged Task Automation, enabling organisations to enhance security and productivity.

Sectigo has launched SiteLock 2.0, a revamped website security platform designed to assist small and medium-sized businesses in protecting their online assets.

WatchGuard Technologies' latest Internet Security Report reveals that seven of the top ten malware threats in Q2 2024 were new.

Sonatype's latest report reveals open source software now comprises 90% of modern development, with a staggering 156% rise in malicious packages.

NinjaOne elevates Joel Carusone to Senior Vice President of Data and AI, unveiling a new AI tool aimed at streamlining patch management for IT teams.

Microsoft has addressed 118 vulnerabilities in its October 2024 Patch Tuesday, including five with evidence of exploitation, amid ongoing security concerns.

Forescout Technologies has unveiled 14 security vulnerabilities in DrayTek routers, raising significant cybersecurity concerns globally and urging urgent protective measures.

Ivanti's report reveals a disconnect as 81% of employees using Gen AI lack training, raising security concerns; only 13% of security pros prioritise user experience.

New Veracode research reveals 68% of EMEA organisations have software vulnerabilities unaddressed for over a year, with 46% facing critical risks.

CrowdStrike faces congressional scrutiny over July's global IT outage, raising concerns about its software management. Industry experts stress the need for robust process intelligence.