Common Vulnerabilities and Exposures (CVE) stories - Page 19

IBM X-Force Red and Qualys are declaring a war on unpatched systems, and they believe automation is the answer.

Check Point's researchers view Speakup as a significant threat, as it can be used to download and spread any malware.

Skybox Security's 2019 Vulnerability and Threat Trends Report analyzes what shaped the threat landscape over 2018 and what it means for the year ahead.

Organisations continue to be targeted by cryptominers, despite an overall drop in value across all cryptocurrencies in 2018.

Webroot's 2018 Nastiest Malware report highlights Emotet, Trickbot, and GhostMiner as the latest threats, urging improved cybersecurity measures.

A very exposing report has revealed breaches are rising and response times are falling, largely due to shoddy software development practices.

Radiflow discovered that a serious vulnerability in the devices put the safety and availability of ICS networks in jeopardy.

Phishing for and using the stolen credentials to access systems or services stands out as a particularly popular attack method.

A critical flaw in Microsoft's ADFS allows bypassing MFA, posing a severe risk, warns Okta's REX team. Urgent patching is recommended for users.

Russell McVeagh Special Counsel Liz Blythe examines the opportunities and risks associated with the eye-wateringly quick pace of change in the sector.

Pivotal APJ head Lawrence Crowther discusses the importance of open source and cloud in modern software development.

GitHub adds security alerts for Python, allowing users to be notified when their code depends on packages with known vulnerabilities.

Check Point's latest Global Threat Index reveals that Trojan malware families enter Top 10 Most Wanted Ranking; Cryptomining remains top of the list.

The top four cybersecurity strategies, including application whitelisting and patching, are proving highly effective against 85% of attacks like ransomware.

Cryptomining malware is shifting its focus from browsers to endpoints, with XMRig rising in popularity among cybercriminals.

Cybercriminals use Microsoft Office documents to conduct 'macro-less' attacks that dodge organisations' defences and inject malware.

Recorded Future believes China has been altering public vulnerability data to allow the Ministry of State Security to play with it first.

A new report from SonicWall has shed light on the current threat landscape with the company recording an astonishing 9.32b malware attacks in 2017.

The North Korean threat group known to some as Reaper (APT37) is eyeing bigger targets with more sophisticated tactics.

A new wave of spam emails use Microsoft Office documents to download password stealers without having to activate Macros.