Ivanti has released fixes for dozens of vulnerabilities in Endpoint Manager, Avalanche, Connect Secure, Policy Secure, and Secure Access Client.
The post Ivanti Patches 50 Vulnerabilities Across Several Products appeared first on SecurityWeek.
Joint Statement from FBI and CISA on the People’s Republic of China (PRC) Targeting of Commercial Telecommunications Infrastructure
CISO Forum Virtual Summit is Today
The CISO Forum Virtual Summit takes place on November 13th in SecurityWeek’s Virtual Conference Center.
The post CISO Forum Virtual Summit is Today appeared first on SecurityWeek.
High-Severity Vulnerabilities Patched in Zoom, Chrome
Zoom Apps security updates resolve six vulnerabilities and Chrome 131 stable is rolling out with 12 security fixes.
The post High-Severity Vulnerabilities Patched in Zoom, Chrome appeared first on SecurityWeek.
Chinese Hackers Target Tibetan Websites in Malware Attack, Cybersecurity Group Says
A hacking group believed to be Chinese state-sponsored has compromised two websites with ties to the Tibetan community in an attack meant to install malware on computers.
The post Chinese Hackers Target Tibetan Websites in Malware Attack, Cybersecurity Group Says appeared first on SecurityWeek.
Comprehensive Guide to Building a Strong Browser Security Program
The rise of SaaS and cloud-based work environments has fundamentally altered the cyber risk landscape. With more than 90% of organizational network traffic flowing through browsers and web applications, companies are facing new and serious cybersecurity threats. These include phishing attacks, data leakage, and malicious extensions. As a result, the browser also becomes a vulnerability that
Citrix, Fortinet Patch High-Severity Vulnerabilities
Citrix and Fortinet have released patches for multiple vulnerabilities, including high-severity bugs in NetScaler and FortiOS.
The post Citrix, Fortinet Patch High-Severity Vulnerabilities appeared first on SecurityWeek.
ICS Patch Tuesday: Security Advisories Released by CISA, Schneider, Siemens, Rockwell
CISA, Schneider Electric, Siemens, and Rockwell Automation have released November 2024 Patch Tuesday security advisories.
The post ICS Patch Tuesday: Security Advisories Released by CISA, Schneider, Siemens, Rockwell appeared first on SecurityWeek.
OvrC Platform Vulnerabilities Expose IoT Devices to Remote Attacks and Code Execution
A security analysis of the OvrC cloud platform has uncovered 10 vulnerabilities that could be chained to allow potential attackers to execute code remotely on connected devices.
“Attackers successfully exploiting these vulnerabilities can access, control, and disrupt devices supported by OvrC; some of those include smart electrical power supplies, cameras, routers, home automation systems, and
“Attackers successfully exploiting these vulnerabilities can access, control, and disrupt devices supported by OvrC; some of those include smart electrical power supplies, cameras, routers, home automation systems, and
China’s Volt Typhoon Rebuilding Botnet
Security researchers say the botnet created by China’s Volt Typhoon re-emerged recently, leveraging the same core infrastructure and techniques.
The post China’s Volt Typhoon Rebuilding Botnet appeared first on SecurityWeek.