Common Vulnerabilities and Exposures (CVE) stories - Page 12

Global security manufacturer Gallagher has been awarded the Security Software Manufacturer of the Year accolade at the 2022 Security & Fire Excellence Awards.

The telecom industry ranks globally as the most impacted by ransomware, followed by transportation and shipping.

This month saw keylogger AgentTesla take first place as the most widespread malware, impacting 7% of organisations worldwide.

A cyber-targeted operating model is a unique approach that provides defensibility, transparency, and accountability.

Apache's watchTowr Platform has identified dangerous string interpolation operators that could be abused by attackers. .

New vulnerability found in ABB TotalFlow flow computers and controllers exposes oil and gas utilities to potential attacks.

DevOps tools and infrastructure are facing increased attacks, with API vulnerabilities impacting security focus, according to a report by Wallarm.

It links individual vulnerabilities in ransomware operations, helping vulnerability management teams prevent potential cyber extortion events with VulnDB.

GitHub has announced a range of new products designed to accelerate the company's push into major enterprises at its San Francisco event.

IT teams are still grappling with the Log4Shell vulnerability, affecting Java enterprise applications and making holiday surprises likely.

Azul's Vulnerability Detection, the new SaaS product, continuously detects vulnerabilities in Java applications by eliminating false positives.

Claroty's Team82 exposes major security vulnerabilities in Siemens PLCs and Dataprobe's PDUs, prompting urgent updates.

Rise in hybrid cyberattacks targeting small companies sparks concern over vulnerability exploits, as corporate espionage becomes widespread.

Following a coordinated disclosure of a zero-day vulnerability by Volexity in Atlassian Confluence, attackers went wild to exploit it.

Black Lotus Labs, the threat intelligence team at Lumen, has discovered a new, rapidly growing, multipurpose malware written in the Go programming language.

The Q2 Internet Security Report found office exploits continue to spread more than any other category of malware.

Trellix has announced the establishment of the Trellix Advanced Research Center to advance global threat intelligence.

FormBook is now the most prevalent malware, taking over from Emotet, which has held that position since its reappearance in January.

Rapid7 has issued a vulnerability advisory for two Baxter Healthcare TCP/IP-enabled medical devices: SIGMA Spectrum Infusion Pump and SIGMA WiFi Battery.

In 2017 the Ponemon Institute reported that fileless attacks are ten times more successful than file-based attacks.