Top story
Why did so many security vendors abandon MITRE’s stresstest?
This year, MITRE made headlines primarily because its leading vulnerability database was in danger of being d...
Security
Cybersecurity has been a challenge from the beginning of IT and it will be until the end. It all started with endpoint and network security, but today we are also dealing with cloud security and training our employees to incorporate good security practices. All these new technologies that help us innovate also help cybercriminals and state-sponsored hackers get new tools that they can use to access our systems and, in the worst cases, gain access to our most valuable data and trade secrets. Moreover, with new legislation such as GDPR, you have to make sure everything is secure or you will not only lose your reputation, but you could also be fined by the government. In short, protecting IT environments is more important than ever.
Timeline
IBM warns of critical flaw in API Connect
IBM is urging customers to immediately patch a critical vulnerability in API Connect. The flaw allows attacke...
Security experts themselves carried out ransomware attacks
Millions earned through BlackCat/ALPHV
On the heels of 2.0, Shai Hulud 3.0 emerges as a supply chain threat
Security company Aikido Security has discovered a third variant of the JavaScript malware Shai Hulud. This ra...
MongoBleed threatens databases, but detection tool is available
Update December 30: Research by The Shadowserver Foundation shows that 74,854 MongoDB servers are still vulne...
Attackers exploit five-year-old Fortinet vulnerability
Fortinet warns of active attacks on a five-year-old vulnerability in FortiOS. The vulnerability makes it poss...
Malicious Chrome extensions disguise themselves as proxy services
Two Chrome extensions called "Phantom Shuttle" pretend to be proxy services, but in reality steal user data. ...
Data of 21,000 Nissan customers leaked via Red Hat
Nissan Motor Co. reported on Monday that the personal data of approximately 21,000 customers had been exposed...
OpenAI: the risk of prompt injection may never disappear
OpenAI states that prompt injection will probably never disappear completely, but that a proactive and rapid ...
SailPoint integrates with CrowdStrike Falcon for faster threat response
SailPoint has announced new integrations with the CrowdStrike Falcon platform to connect identity governance ...
Palo Alto Networks migrates largely to Google Cloud and signs landmark deal
Palo Alto Networks and Google Cloud are already partners, but are significantly strengthening their ties. Cri...