Prioritizing and remediating vulnerabilities in the wake of Log4J and Microsoft’s Patch Tuesday blunder
The past few weeks left IT professionals overwhelmed as organizations scrambled to assess if they were vulnerable to threats posed by the Log4Shell vulnerability. As...
Using the NIST Cybersecurity Framework to address organizational risk
The U.S. federal government has been very active the past year, particularly with the cybersecurity executive order (EO) and associated tasks and goals that have...
Using the NIST Cybersecurity Framework to address organizational risk
The U.S. federal government has been very active the past year, particularly with the cybersecurity executive order (EO) and associated tasks and goals that have...
DSA-5059 policykit-1 – security update
The Qualys Research Labs discovered a local privilege escalation in PolicyKit's pkexec. Read More
DSA-5060 webkit2gtk – security update
The following vulnerabilities have been discovered in the webkit2gtk web engine: Read More
DSA-5061 wpewebkit – security update
The following vulnerabilities have been discovered in the wpewebkit web engine: Read More
DSA-5062 nss – security update
Tavis Ormandy discovered that incorrect parsing of pkcs7 sequences in nss, the Mozilla Network Security Service library, may result in denial of service. Read More
CISOs should heed Donot Team’s attacks on India and its neighbours
Donot Team, a threat actor operating since at least 2016, has been waging a two-year campaign of cyber espionage attacks against South Asian countries bordering...
CISOs should heed Donot Team’s attacks on India and its neighbours
Donot Team, a threat actor operating since at least 2016, has been waging a two-year campaign of cyber espionage attacks against South Asian countries bordering...
Can Apple Macs get Viruses?
It’s a long-standing question. Can Apple Macs get viruses? While Apple does go to great lengths to keep all its devices safe, this doesn’t mean...