Security vulnerabilities stories - Page 2

Mindgard has uncovered serious security flaws in Microsoft's Azure AI Content Safety Service, enabling potential attacks to undermine its security measures.

Kaspersky's ICS CERT has revealed critical vulnerabilities in Unisoc SoCs, heightening risks of remote hijacking in devices.

Trend Micro has launched the Pwn2Own Ireland contest to uncover vulnerabilities in AI-enabled consumer devices, supported by Meta, Synology, and QNAP.

A Juniper Research study predicts satellite IoT revenue will surge from USD $2.9 billion in 2024 to USD $5.8 billion by 2027, driven by demand for remote connectivity.

Tenable has revealed a medium-severity vulnerability in Open Policy Agent for Windows that exposes user credentials, urging updates to version 0.68.0.

SailPoint Technologies has launched its Identity Security Cloud feature, Privileged Task Automation, enabling organisations to enhance security and productivity.

Sectigo has launched SiteLock 2.0, a revamped website security platform designed to assist small and medium-sized businesses in protecting their online assets.

WatchGuard Technologies' latest Internet Security Report reveals that seven of the top ten malware threats in Q2 2024 were new.

Sonatype's latest report reveals open source software now comprises 90% of modern development, with a staggering 156% rise in malicious packages.

NinjaOne elevates Joel Carusone to Senior Vice President of Data and AI, unveiling a new AI tool aimed at streamlining patch management for IT teams.

Microsoft has addressed 118 vulnerabilities in its October 2024 Patch Tuesday, including five with evidence of exploitation, amid ongoing security concerns.

Forescout Technologies has unveiled 14 security vulnerabilities in DrayTek routers, raising significant cybersecurity concerns globally and urging urgent protective measures.

Ivanti's report reveals a disconnect as 81% of employees using Gen AI lack training, raising security concerns; only 13% of security pros prioritise user experience.

New Veracode research reveals 68% of EMEA organisations have software vulnerabilities unaddressed for over a year, with 46% facing critical risks.

CrowdStrike faces congressional scrutiny over July's global IT outage, raising concerns about its software management. Industry experts stress the need for robust process intelligence.

Only 16% of organisations find their software testing effective amidst AI integration, revealing significant challenges and a need for better test practices.

A Leapwork survey reveals only 16% of firms find their software testing efficient, despite 85% having integrated AI, uncovering widespread performance issues.

Report reveals grave cybersecurity flaws, with 97% of Non-Human Identities having excessive privileges and 44% of tokens exposed.

HackerOne has introduced Essential VDP, aiming to aid organisations in handling security vulnerabilities and meeting compliance standards.

Microsoft's September Patch Tuesday addresses 79 vulnerabilities, including four critical RCEs and bugs with in-the-wild exploitation. Surprisingly, no browser patches yet.