USN-5304-1: PolicyKit vulnerability
Kevin Backhouse discovered that PolicyKit incorrectly handled file descriptors. A local attacker could possibly use this issue to cause PolicyKit to crash, resulting in a...
Wiper malware targets Ukraine as military conflict extends into cyberspace
Wiper malware has been detected abusing legitimate drivers and targeting Active Directory servers amid ongoing Russian military conflict in Ukraine. The campaign reflects a growing...
Conti Group Suffers Massive Data Breach
Researchers leak internal messages after geopolitical misstep Read More
DevSecOps code process
Best practices In the first article in this series we covered the basics. In the second article about the planning process, we covered how developers incorporate security...
Nvidia Appears to Brush Off Ransomware Attack
Online chatter suggests chip giant “hacked back” at its attacker Read More
Meta Squeezes Russian State-Controlled Media Platforms
Social media giant restricts access to state media and disrupts disinfo networks Read More
3 biggest cyber risks from the Ukraine-Russia conflict
The invasion of Ukraine by Russia is reason enough for all CISOs to place their teams at a heightened state of alert and readiness in...
CVE-2020-36510
The 15Zine WordPress theme before 3.3.0 does not sanitise and escape the cbi parameter before outputing it back in the response via the cb_s_a AJAX...
Previously Unseen Backdoor Bvp47 Potentially Victimized Global Targets
FortiGuard Labs is aware of a report by Pangu Lab that a new Linux backdoor malware that reportedly belongs to the Equation group was used...
F5 Releases August 2021 Security Advisory Including Critical CVE-2021-23031
FortiGuard Labs is aware that F5 released a security advisory on August 24th about vulnerabilities affecting multiple versions of BIG-IP and BIG-IQ. The US Cybersecurity...