UNPACKING THE RECENT OKTA SUPPORT SYSTEM SECURITY INCIDENT

The Art of Intrusion: Description of the Okta Breach In a recent cybersecurity incident, identity and access management tech firm ...

DATA LEAK ALERT: MICROSOFT AI RESEARCHERS INADVERTENTLY EXPOSE 38 TERABYTES OF CONFIDENTIAL DATA

Recently, Microsoft faced a significant security issue resulting in the accidental exposure of a whopping 38 terabytes of private data ...

MGM RESORTS INTERNATIONAL RANSOMWARE ATTACK: A CAUTIONARY TALE IN THE DIGITAL AGE

In the ever-evolving landscape of cybersecurity threats, even giants can fall prey to cunning cybercriminals. On September 11, 2023, MGM ...

THIRD-PARTY SECURITY RISK MANAGEMENT

What Is Third Party Security Risk Management? Third-party security risk management is important because failure to assess third-party risks exposes ...

THIS VULNERABILITY AFFECTS ALL JAVA APPLICATIONS THAT RELY ON FASTJSON: CVE-2022-25845

A patched high-severity security vulnerability in the popular Fastjson library that could be potentially exploited to achieve remote code execution ...

CRITICAL ATTACK ON ATLASSIAN CONFLUENCE SERVER AND DATA CENTER PRODUCTS: CVE-2022-26134

Adversaries have been actively exploiting a critical Remote Code Execution vulnerability being tracked as CVE-2022-26134, impacting Atlassian Confluence Server and ...

ADVERSARIES ARE EXPLOITING CRITICAL F5 BIG-IP RCE

Threat actors started massively exploiting the critical remote code execution vulnerability, tracked as CVE-2022-1388, affecting F5 BIG-IP. On May 4, ...

YOU ARE SAFE WHEN YOU MAKE THE BEST USE OF REMOVABLE MEDIA:

Removable media has been a staple of modern-day computing for decades. Removable media is very easily lost, which could result ...

CVE-2022-22954: CRITICAL RCE IN VMWARE WORKSPACE ONE ACCESS AND VMWARE IDENTITY MANAGER

Attackers have begun exploiting CVE-2022-22954, a RCE vulnerability in VMware Workspace ONE Access and Identity Manager, to deliver crypto miners ...

Spring4Shell: Patched RCE Vulnerability in Spring Core and Spring Cloud Frameworks Finally

Spring released emergency updates to fix the 'Spring4Shell' zero-day remote code execution vulnerability, which leaked prematurely online before a patch ...