News – TFun dot org

Prioritize patching vulnerabilities associated with ransomware

19/05/2022RedOne

A threat research from Cyber Security Works (CSW) has revealed a 7.6% increase in ransomware vulnerabilities since the publication of the Ransomware Spotlight Report in January 2022. In the last quarter, ransomware attacks have made mainstream headlines on a near-daily basis, with groups like Lapsus$ and Conti’s names splashed across the page. Major organizations like […]

46% of organizations still store passwords in shared documents

19/05/2022RedOne

46% of IT, security, and cybersecurity leaders say they still store passwords in shared office documents. That’s despite an overwhelming 93% of respondents that require password management training, with 63% holding training more than once per year, according to a survey conducted by Pulse on behalf of Hitachi ID. “It raises an important question about […]

How do DevSecOps professionals feel about security becoming an around the clock job?

19/05/2022RedOne

As breaches continue to rise, cybersecurity and development professionals are feeling the pressure to maintain their organizations’ security postures. Invicti Security released a report unveiling how developers and security professionals are overworked and understaffed, yet prideful of their roles within their organizations. Conducted in partnership with Wakefield Research, the report is based on a survey […]

MITRE Creates Framework for Supply Chain Security

18/05/2022RedOne

System of Trust includes data-driven metrics for evaluating the integrity of software, services, and suppliers.

CISA to Federal Agencies: Patch VMWare Products Now or Take Them Offline

18/05/2022RedOne

Last month attackers quickly reverse-engineered VMWare patches to launch RCE attacks. CISA warns it’s going to happen again.

How Pwn2Own Made Bug Hunting a Real Sport

18/05/2022RedOne

From a scrappy contest where hackers tried to win laptops, Pwn2Own has grown into a premier event that has helped normalize bug hunting.

Lacework Integrates Kubernetes Features to Enhance Security Across Multi-Cloud Environments

18/05/2022RedOne

Polygraph Data Platform adds Kubernetes audit log monitoring, integration with Kubernetes admission controller, and Infrastructure as Code (IaC) security to help seamlessly integrate security into developer workflows.

Category: News

Prioritize patching vulnerabilities associated with ransomware

46% of organizations still store passwords in shared documents

How do DevSecOps professionals feel about security becoming an around the clock job?

MITRE Creates Framework for Supply Chain Security

CISA to Federal Agencies: Patch VMWare Products Now or Take Them Offline

How Pwn2Own Made Bug Hunting a Real Sport

Lacework Integrates Kubernetes Features to Enhance Security Across Multi-Cloud Environments

Threat Actors Chaining Unpatched VMware Vulnerabilities for Full System Control

CISA Issues Emergency Directive and Releases Advisory Related to VMware Vulnerabilities

CISA: Unpatched F5 BIG-IP Devices Under Active Attack