Common Vulnerabilities and Exposures (CVE) stories - Page 8

Hackuity, the RBVM company, attains SOC 2 Type II compliance, showcasing strong data security and compliance that uphold rigorous American standards, providing customers with enterprise-grade security assurance.

Armis acquires AI threat intelligence firm, CTCI, boosting its forecast abilities and creating a powerful new Global Threat Intelligence Service.

Trend Micro discloses critical zero-day vulnerability in Windows Defender, under malicious exploitation by cyber-threat group, Water Hydra, endangering millions of users globally.

Network case anomalies surge 19%, marking a rising and sophisticated threat to operational technology and IoT environments, with manufacturing vulnerabilities rocketing 230%, warns Nozomi Networks Labs.

Cyberattacks on web applications have surged, Barracuda has defended against over 18bn such attacks in 2023 alone, with web apps providing a prime target for cyber attackers due to vulnerabilities and valuable data.

Video technology leader, Milestone Systems, partners with the Common Vulnerability and Exposures Program, furthering transparency and cooperation in addressing cybersecurity threats.

We see 2024 shaping up to be the defining moment where AI may become the profound battleground in cybersecurity.

Armis's report shows cyber attacks globally doubled in 2023, with utilities and manufacturing sectors the hardest hit.

Less than 1% of security vulnerabilities created the highest risks to businesses in 2023, with 97 high-risk vulnerabilities exploited undetected, says Qualys Threat Research Unit report.

Suspected espionage group UNC5221 exploited two zero-day vulnerabilities in Ivanti VPN and security appliances, using multiple custom malware families for post-exploitation espionage.

Over 40% of firms struggle to tackle vulnerabilities in the rising complexity of software supply chains, despite sizeable resource allocation, says Slim.AI's recent Container Report.

Kaspersky's GReAT team has uncovered an undisclosed iPhone hardware feature used in Operation Triangulation attacks.

Efforts to mitigate the Log4j vulnerability involve updating to patched versions of Log4j, but the process continues to be complex.

Team82 at Claroty uncovers substantial cybersecurity vulnerabilities in Operational Technology protocol clients, showing potential for full system control.

With all the benefits the cloud has to offer, it also introduces a new set of challenges, particularly for industries where security and compliance are priorities.

OpenSSF introduces new members including Patchstack and SparkFabrik, and outlines secure software development principles.

Rising cybersecurity threats prompt a shift from traditional, vulnerable password methods to phishing-resistant authentication solutions.

Check Point's latest Global Threat Index exposes a surge in Remote Access Trojan NJRat and an AgentTesla campaign.

Action1 Corp. is releasing an enterprise IT security solution integrating automated vulnerability remediation workflows.

CAST has launched their autumn release of software intelligence product, CAST Highlight, designed to enhance cloud migration and optimisation.