Want to know more about this topic or about us? Contact us!
Red Hat has issued patches for a bug in an open source Java virtual machine software that opens the door to drive-by localhost attacks. Patch now, as it’s easy for cyberattackers to exploit.
Signal messaging app zero-day vulnerabilities have sparked a $1.5M bidding match, as gray-market exploit brokers flourish in today’s geopolitical climate.
Cloud native application protection platforms can apply machine learning algorithms on cloud data to identify accounts with abnormal permissions and uncover potential threats.
New functionality further reduces the risk of lateral movement.
The simplicity and profitability of these attacks continue to appeal to threat actors a decade later.
The quarterly report, made possible by its Dynamic Defense™ service, demonstrates significant progress in mitigating domain abuse among its top-level domains (TLDs).
Current authentication methods are based on the bearer model, but lack of visibility into the entities leveraging API secrets has made this untenable.
New investment will accelerate growth and expansion of SaaS identity-hygiene platform.
The NSS Labs archive, available with free registration, consists of over 800 test reports, analyst briefs, and research published by NSS Labs from 2013 — 2020.
New findings from cybersecurity firm JFrog show that malware targeting the npm ecosystem can evade security checks by taking advantage of an “unexpected behavior” in the npm command line interface (CLI) tool. npm CLI’s install and audit commands have built-in capabilities to check a package and all of its dependencies for known vulnerabilities, effectively acting . . . Read more