Advertisement
Microsoft mitigation for new Exchange Server zero-day exploits can be bypassed
No permanent fix for the Exchange Server vulnerabilities is yet available, but other steps can mitigate the risk.
![A user reviews data and statistical models. [analytics / analysis / tracking / monitoring / logging]](https://images.idgesg.net/images/article/2020/08/user_reviews_data_tracking_monitoring_analytics_event_logging_analysis_threat_detection_by_laurence_dutton_gettyimages-1170687091_2400x1600-100855964-medium.3x2.jpg?auto=webp&quality=85,70){kind=tracking}
LiveAction adds new SOC-focused features to ThreatEye NDR platform
A SOC-specific user interface that supports analyst workflows and enhanced predicative threat intelligence capabilities are among the new features.
![Digital bugs amid binary code. [security threats / malware / breach / hack / attack]](https://images.idgesg.net/images/article/2020/09/digital_bugs_amid_binary_code_security_threats_malware_breach_hack_attack_by_whatawin_gettyimages-1188254819_2400x1600-100858616-medium.3x2.jpg?auto=webp&quality=85,70)
11 old software bugs that took way too long to squash
As these examples show, vulnerabilities can lurk within production code for years or decades—and attacks can come at any time.
Advertisement
Cyberespionage group developed backdoors tailored for VMware ESXi hypervisors
A possibly new threat actor packaged and deployed backdoors as vSphere Installation Bundles, gaining remote code execution and persistence capabilities.
Enterprises embrace devsecops practices against supply chain attacks
Healthy developer-team culture and adherence to devsecops best practices to protect against supply chain attacks are surprisingly commonplace in today’s security environment, according to a report from Google Cloud's DORA research...
Top cybersecurity M&A deals for 2022
The hot cybersecurity mergers and acquisition market continues into 2022 as vendors look to solidify their positions and expand their offerings.
Malware builder uses fresh tactics to hit victims with Agent Tesla RAT
A new malware campaign uses the recently discovered Quantum Builder and sophisticated tactics to deliver malicious payload.
![Security threat [illustration] > A hacker with black hat, mask, and crowbar breaks into a laptop.](https://images.idgesg.net/images/article/2021/06/hacker_hackingsecurity_threat_crime_criminal_with_black_hat_mask_and_crowbar_breaks_into_a_laptop_by_drdrawer_shutterstock_1364574311_royalty-free_digital-only_2400x1600-100890822-medium.3x2.jpg?auto=webp&quality=85,70)
Most hackers need 5 hours or less to break into enterprise environments
A new survey of 300 ethical hackers provides insight into not only the most common means of initial access but how a complete end-to-end attack happens.
Recent cases highlight need for insider threat awareness and action
Insider threats can have a devastating impact even if the harm is unintentional. Here's advice to identify and mitigate insider threat risk.
22 notable government cybersecurity initiatives in 2022
Countries across the globe are taking on cybersecurity threats. Here are the most notable initiatives they've introduced in 2022.
Advertisement
Coca-Cola Beverages Philippines’ Trisha Liu-Ventura on women in cybersecurity
Trisha Liu-Ventura – Head of Cybersecurity, Governance, Risk, and Compliance at Coca-Cola Beverages Philippines – joins Xiou Ann Lim for this CSO Executive Sessions interview.
Cryptojacking, DDoS attacks increase in container-based cloud systems
Victims lose $53 for every $1 cryptojackers gain, according to a new report from Sysdig.
16 Wall Street firms fined $1.8B for using private text apps, lying about it
The banks and brokerages were fined because employees were messaging and texting with clients without recording the communications, as required. And some of the firms' execs lied about it and deleted messages.
UK organizations, Ukraine's allies warned of potential "massive" cyberattacks by Russia
UK National Cyber Security Centre CEO Lindy Cameron reflects on Russia’s recent cyber activity as Ukraine warns its allies to prepare for cyberattacks targeting critical infrastructure.
How cybercriminals use public online and offline data to target employees
A LinkedIn post about getting a new job turned into a potential phishing scam. Similar incidents are more common than you might think.
From Our Advertisers
-
![intel sponsored campaign]()
Featured SponsorCompetitive Advantage with a Modern Data Center that Delivers Boundless Agility -
![digital cloud security background concept picture id1331943958]()
Sponsored by Juniper NetworksYou can’t have zero trust without visibility -
![istock 641382150]()
Sponsored by SentinelOneHow to Detect Identity-Based Attacks to Protect Your Business -
![image post 2 deploy ndr 1200x800]()
Sponsored by NetscoutDeploy NDR to Modernize Your Cybersecurity Strategy
