Security News, Assessments & Alerts

Security Issues, Vulnerabilities, Exploits & Government Alerts

Critical Bootloader Vulnerability in Shim Impacts Nearly All Linux Distros

?Feb 07, 2024?NewsroomDevice Security / Vulnerability The maintainers of shim have released version 15.8 to address six security flaws, including a critical bug that could pave the way for remote code execution under specific circumstances.…

CISA Launches #Protect2024 Resources Webpage for State and Local Election Officials

by CISA
February 7, 2024
Security News, Assessments & Alerts
2 min read

WASHINGTON – As part of its unwavering commitment to safeguarding the security and integrity of the nation’s elections infrastructure, the Cybersecurity and Infrastructure Agency (CISA) launched its new #Protect2024 webpage today. Election security remains a…

U.S. and International Partners Publish Cybersecurity Advisory on People’s Republic of China State-Sponsored Hacking of U.S. Critical Infrastructure

by CISA
February 7, 2024
Security News, Assessments & Alerts
4 min read

Advisory provides details on the PRC’s efforts to conceal its hacking activity, discovery and mitigation guidance to potential victims, and encourage reporting of any suspected incident WASHINGTON – The Cybersecurity and Infrastructure Security Agency…

CISA and EPA Collaborate on Water and Wastewater Sector Cyber Resources

by CISA
February 7, 2024
Security News, Assessments & Alerts
3 min read

WASHINGTON – Today, the Cybersecurity and Infrastructure Security Agency (CISA) and the Environmental Protection Agency (EPA) hosted a CISA Live event on LinkedIn, titled Boosting Water Sector Cybersecurity. The event featured CISA Deputy Director Nitin…

5 Steps to vCISO Success for MSPs and MSSPs

?Feb 07, 2024?The Hacker NewsRisk Management / Cybersecurity 2024 will be the year of the vCISO. An incredible 45% of MSPs and MSSPs are planning to start offering vCISO services in 2024. As an MSP/MSSP…

Global Coalition and Tech Giants Unite Against Commercial Spyware Abuse

A coalition of dozens of countries, including France, the U.K., and the U.S., along with tech companies such as Google, MDSec, Meta, and Microsoft, have signed a joint agreement to curb the abuse of commercial…

Chinese Hackers Exploited FortiGate Flaw to Breach Dutch Military Network

?Feb 07, 2024?NewsroomCyber Espionage / Network Security Chinese state-backed hackers broke into a computer network that’s used by the Dutch armed forces by targeting Fortinet FortiGate devices. “This [computer network] was used for unclassified research…

Critical JetBrains TeamCity On-Premises Flaw Exposes Servers to Takeover

?Feb 07, 2024?NewsroomCybersecurity / Software Security JetBrains is alerting customers of a critical security flaw in its TeamCity On-Premises continuous integration and continuous deployment (CI/CD) software that could be exploited by threat actors to take…

Fake Facebook Job Ads Spreading ‘Ov3r_Stealer’ to Steal Crypto and Credentials

?Feb 06, 2024?NewsroomSocial Engineering / Malvertising Threat actors are leveraging bogus Facebook job advertisements as a lure to trick prospective targets into installing a new Windows-based stealer malware codenamed Ov3r_Stealer. “This malware is designed to…

Experts Detail New Flaws in Azure HDInsight Spark, Kafka, and Hadoop Services

?Feb 06, 2024?NewsroomVulnerability / Cloud Security Three new security vulnerabilities have been discovered in Azure HDInsight’s Apache Hadoop, Kafka, and Spark services that could be exploited to achieve privilege escalation and a regular expression denial-of-service…

« Previous
1
…
407
408
409
410
411
…
430
Next »