Cisco has fixed a critical severity vulnerability that lets attackers add new users with root privileges and permanently crash Security Email Gateway (SEG) appliances using emails with malicious attachments. […]
MarineMax Notifying 123,000 of Data Breach Following Ransomware Attack
Boat dealer MarineMax said the data breach caused by a recent ransomware attack impacts over 123,000 individuals.
The post MarineMax Notifying 123,000 of Data Breach Following Ransomware Attack appeared first on SecurityWeek.
Ctera Raises $80 Million From PSG Equity
Ctera has received $80 million in primary and secondary funding from private equity firm PSG Equity.
The post Ctera Raises $80 Million From PSG Equity appeared first on SecurityWeek.
Pentagon Leaker Jack Teixeira to Face Military Court-Martial, Air Force Says
Teixeira, who was part of the 102nd Intelligence Wing at Otis Air National Guard Base in Massachusetts, worked as a cyber transport systems specialist.
The post Pentagon Leaker Jack Teixeira to Face Military Court-Martial, Air Force Says appeared first on SecurityWeek.
Port Shadow Attack Allows VPN Traffic Interception, Redirection
Researchers show how the Port Shadow technique against VPNs can allow MitM attacks, enabling threat actors to intercept and redirect traffic.
The post Port Shadow Attack Allows VPN Traffic Interception, Redirection appeared first on SecurityWeek.
AppSec Webinar: How to Turn Developers into Security Champions
Let’s face it: AppSec and developers often feel like they’re on opposing teams. You’re battling endless vulnerabilities while they just want to ship code. Sound familiar?
It’s a common challenge, but there is a solution.
Ever wish they proactively cared about security? The answer lies in a proven, but often overlooked, strategy: Security Champion Programs — a way to turn developers from
It’s a common challenge, but there is a solution.
Ever wish they proactively cared about security? The answer lies in a proven, but often overlooked, strategy: Security Champion Programs — a way to turn developers from
Microsoft: Windows 11 23H2 now available for all eligible devices
Microsoft says the Windows 11 2023 Update has entered the broad deployment phase and is now available to all seekers on eligible systems. […]
Ivanti Issues Hotfix for High-Severity Endpoint Manager Vulnerability
Ivanti has released a hotfix to address an SQL injection vulnerability in Endpoint Manager (EPM) 2024 flat.
The post Ivanti Issues Hotfix for High-Severity Endpoint Manager Vulnerability appeared first on SecurityWeek.
Automated Threats Pose Increasing Risk to the Travel Industry
As the travel industry rebounds post-pandemic, it is increasingly targeted by automated threats, with the sector experiencing nearly 21% of all bot attack requests last year. That’s according to research from Imperva, a Thales company. In their 2024 Bad Bot Report, Imperva finds that bad bots accounted for 44.5% of the industry’s web traffic in 2023—a significant jump from 37.4% in 2022.
Rising Tides: Alyssa Miller on ‘Do Better, be Better’ and ‘See Past the Technology’ to Advance Cybersecurity
Miller has been in cybersecurity for roughly 20 years and is now the CISO of Epiq Global.
The post Rising Tides: Alyssa Miller on ‘Do Better, be Better’ and ‘See Past the Technology’ to Advance Cybersecurity appeared first on SecurityWeek.