Top story
Why did so many security vendors abandon MITRE’s stresstest?
This year, MITRE made headlines primarily because its leading vulnerability database was in danger of being d...
Security
Cybersecurity has been a challenge from the beginning of IT and it will be until the end. It all started with endpoint and network security, but today we are also dealing with cloud security and training our employees to incorporate good security practices. All these new technologies that help us innovate also help cybercriminals and state-sponsored hackers get new tools that they can use to access our systems and, in the worst cases, gain access to our most valuable data and trade secrets. Moreover, with new legislation such as GDPR, you have to make sure everything is secure or you will not only lose your reputation, but you could also be fined by the government. In short, protecting IT environments is more important than ever.
Timeline
Vulnerability in Cityworks leads to Microsoft IIS attacks
Trimble, a software vendor for the construction industry and others, is warning of a critical vulnerability i...
LLM hijackers target DeepSeek API
LLMjacking has been taking off recently, Sysdig notes. For example, accounts for access to DeepSeek's LLMs we...
Secureworks acquisition by Sophos is complete
After the two parties announced their merger in October, Secureworks is now officially part of Sophos. With t...
Microsoft: public ASP.NET keys being misused
Microsoft warns that ASP.NET machine keys found online can be misused for malware attacks. The company provid...
Abandoned Amazon S3 buckets help attackers on their way
Deleted or disused Amazon S3 buckets are proving to be a significant attack vector for cybercriminals. Securi...
Cisco fixes two critical vulnerabilities in Identity Services Engine
Cisco has fixed two critical vulnerabilities in its Identity Services Engine (ISE) that could allow an authen...
Phishing-as-a-Service increasingly accessible to cybercriminals
Phishing-as-a-Service (PhaaS) kits are becoming increasingly popular among cybercriminals. They allow malicio...
Microsoft addresses Windows vulnerability with PowerShell script
Microsoft recently rolled out a PowerShell script that addresses the 2023 BlackLotus Secure Boot vulnerabilit...
Top story
Dynatrace’s raft of updates: AIOps, CSPM, and more
During the annual Perform event in Las Vegas, Dynatrace announced a fleet of updates. The company has ambitio...
