Firefox 102 Patches 19 Vulnerabilities, Improves Privacy
Mozilla this week announced the availability of Firefox 102 in the stable channel with patches for 19 vulnerabilities, including four high-severity bugs. read more
Continue ReadingCategory: Vulnerabilities
Patchable and Preventable Security Issues Lead Causes of Q1 Attacks
Attacks against U.S. companies spike in Q1 2022 with patchable and preventable external vulnerabilities responsible for bulk of attacks.
Continue ReadingMITRE Publishes 2022 List of 25 Most Dangerous Vulnerabilities
The US Cybersecurity and Infrastructure Security Agency (CISA) and the nonprofit organization MITRE have published the 2022 list of the 25 most dangerous vulnerabilities. read more
Continue ReadingNormalyze Announces $22 Million for DSPM Technology
Bay Area startup Normalyze on Monday announced a $22 million in Series A funding as venture capital investors rush to place bets on the newly coined Data Security Posture Management (DSPM) space. read more
Continue ReadingCISA Says ‘PwnKit’ Linux Vulnerability Exploited in Attacks
The US Cybersecurity and Infrastructure Security Agency (CISA) says a Linux vulnerability tracked as CVE-2021-4034 and PwnKit has been exploited in attacks. read more
Continue ReadingCyolo Banks $60M Series B for ZTNA Technology
Cyolo, an Israeli startup building technology for zero trust networking, on Monday announced a new $60 million investment led by the venture investing arm of National Grid. In addition to National Grid Partners, Cyolo said it scored investments from Glilot Capital Partners, Flint Capital, Differential Ventures, and Merlin Ventures. read more
Continue ReadingNew Database Catalogs Cloud Vulnerabilities, Security Issues
Cloud security company Wiz has announced the launch of a new database whose goal is to keep track of vulnerabilities and other security issues affecting cloud services. read more
Continue ReadingMitel VoIP Bug Exploited in Ransomware Attacks
Researchers warn threat actors are using a novel remote code execution exploit to gain initial access to victim’s environments.
Continue ReadingLog4Shell Vulnerability Targeted in VMware Servers to Exfiltrate Data
CISA warns that threat actors are ramping up attacks against unpatched Log4Shell vulnerability in VMware servers.
Continue ReadingResearchers: It Took Oracle 6 Months to Patch ‘Mega’ Vulnerability Affecting Many Systems
Security researchers have published technical details on a critical Fusion Middleware vulnerability that Oracle took six months to patch. read more
Continue Reading