Microsoft Fixes 71 CVEs Including Actively Exploited Zero-Day
Microsoft has patched dozens of vulnerabilities in December, including one zero-day being exploited in the wild Read More
Zero Day in Cleo File Transfer Software Exploited En Masse
A zero-day vulnerability in Cleo file transfer software is being exploited in data theft attacks Read More
Snowflake Pledges to Make MFA Mandatory
The multi-cloud data warehousing platform said it will completely phase out single factor authentication with passwords by November 2025 Read More
Patch Tuesday, December 2024 Edition
Microsoft today released updates to plug at least 70 security holes in Windows and Windows software, including one vulnerability that is already being exploited in...
“CP3O” pleads guilty to multi-million dollar cryptomining scheme
A man faces up to 20 years in prison after pleading guilty to charges related to an illegal cryptomining operation that stole millions of dollars...
3AM ransomware: what you need to know
The 3AM ransomware first emerged in late 2023. Like other ransomware, 3AM exfiltrates victims' data (demanding a ransom is paid) and encrypts the copies left...
Hackers Exploit AWS Misconfigurations in Massive Data Breach
Hackers exploited AWS misconfigurations, leaking 2TB of sensitive data, including customer information, credentials and proprietary source code Read More
CIS Benchmarks December 2024 Update
Here is an overview of the CIS Benchmarks that the Center for Internet Security updated or released for December 2024. Read More
Lynx Ransomware Pouncing on Utilities
The Lynx ransomware group targeted multiple U.S. facilities in 2024. Here's how your facility can strengthen your defenses against threats like Lynx. Read More
The AI Fix #28: Robot dogs with bombs, and who is David Mayer?
In episode 28 of The AI Fix, the new version of ChatGPT does a surprisingly good job of telling Mark how to defend himself from...