-
What is XSS? Cross-site scripting attacks explained
PRIVACY PRIVACY Cross-site scripting (XSS) is a cyberattack in which a hacker enters malicious code into a web form or web application url. This malicious code, written in a scripting language like JavaScript or PHP, can do anything from vandalizing the website you’re trying to load to stealing your passwords or other login credentials. XSS…
-
International Women’s Day: Career Advice from Women in Tech
PRIVACY PRIVACY At the Center for Internet Security (CIS), we are proud to have so many talented, passionate, and knowledgeable employees on our team. Their efforts have contributed to our mission of making the connected world a safer place, bringing Confidence in the Connected World. In honor of International Women’s Day, CIS highlights some of…
-
Microsoft’s March 2022 Patch Tuesday Addresses 71 CVEs (CVE-2022-23277, CVE-2022-24508)
PRIVACY PRIVACY Microsoft addresses 71 CVEs in its March 2022 Patch Tuesday release, including three vulnerabilities that were publicly disclosed as zero-days. 3Critical 68Important 0Moderate 0Low Microsoft patched 71 CVEs in the March 2022 Patch Tuesday release, with three rated as critical and 68 rated as important. This month’s update includes patches for: .NET and…
-
McAfee Teammates Share How They’ll Help #BreakTheBias this International Women’s Day
PRIVACY PRIVACY International Women’s Day serves as an important reminder that each and every one of us plays a role in recognizing and addressing gender bias. Together, we can make a difference in creating a more equitable world for all. At McAfee, we know that genuine change requires continuous commitment. And while we’re proud of…
-
Prison for Man Who Scammed US Government to Buy Pokémon Card
PRIVACY PRIVACY US locks up COVID Relief fraudster who spent thousands on collectible trading card Read More
-
Oklahoma Hospital Data Breach Impacts 92,000 People
PRIVACY PRIVACY Patient and employee data in care of Duncan Regional Hospital exposed in security incident Read More
-
Google acquires Mandiant to enhance Google Cloud security suite
PRIVACY PRIVACY Google LLC today announced that it has signed a definitive agreement to acquire Mandiant Inc., a leader in dynamic cyber defense and response. The deal is an all-cash transaction valued at approximately $5.4 billion, inclusive of Mandiant’s net cash, and will see Mandiant join Google Cloud as the latter enhances its security operations…
-
Google to Acquire Mandiant
PRIVACY PRIVACY Google announces intent to buy cybersecurity firm for approximately $5.4bn Read More
-
#DSbD: Embrace Change and Collaboration to Revolutionize Cybersecurity
PRIVACY PRIVACY Embracing change and collaboration are key to government-backed DSbD initiative, which aims to transform UK’s approach to cybersecurity Read More
-
Critical flaws in APC uninterruptible power supplies poses risks to mission-critical devices
PRIVACY PRIVACY Security researchers have found several vulnerabilities affecting many models of APC Smart-UPS uninterruptible power supplies that could be exploited to take over the devices. UPS devices are used across many industries to keep mission-critical devices running in case of power loss. “Two of these are remote code execution (RCE) vulnerabilities in the code…