Security vulnerabilities stories - Page 3

Despite 93% confidence in defences, 62% of organisations faced mobile app breaches last year, prompting a shift towards proactive security in development.

Healthcare sector excels in preventing serious security flaws but takes nearly two months to fix them, risking sensitive data exposure amid rising cyber threats.

Cyberattacks on the financial sector have surged 25% in 2024, with phishing leading and nearly half of employees prone to clicking malicious links.

eZaango Group has secured ISO 27001:2022 certification, reinforcing its commitment to robust information security and leadership against cyber threats.

Quantum computing presents urgent security risks for organisations relying on Microsoft Active Directory, as legacy systems struggle to meet new cryptographic demands.

Over 6,500 Axis Communications camera servers worldwide face security risks from four critical flaws, risking hijacked or disabled live surveillance feeds.

Palo Alto Networks launches Cortex Cloud ASPM, a prevention-first tool to block security risks in cloud and AI apps before deployment, enhancing threat management.

Palo Alto Networks has enhanced Cortex Cloud with a new module to prevent AI-generated code risks, boosting security for faster, safer software development.

BeyondTrust launches Phantom Labs, a specialised team to research identity security threats and enhance protection against identity exploitation in hybrid and cloud environments.

Amsterdam-based cybersecurity startup Dawnguard secures USD $3 million to embed security into system design, aiming to prevent risks from the development phase onwards.

Panaseer has launched Key Drivers, an AI tool delivering real-time cybersecurity risk analysis to help organisations swiftly spot and address vulnerabilities.

Trend Micro warns that rapid AI deployment is exposing critical cybersecurity risks, with thousands of servers vulnerable to attacks due to unpatched and unsecured components.

Azul has launched a Managed Services Provider Programme to help partners offer Java asset management, security and code insights via its Intelligence Cloud platform.

Identities have become the prime target in cybersecurity, with businesses urged to secure digital access through ownership, least privilege, MFA, and secret management.

Cycode and HackerOne partner to integrate bug bounty findings into Cycode's platform, speeding up vulnerability fixes and improving software security workflows.

A design flaw in Windows Server 2025 allows attackers to persist undetected in Active Directory by exploiting managed service account vulnerabilities.

A race condition vulnerability in nopCommerce gift cards lets attackers redeem the same card repeatedly, exploiting a flaw in the checkout process.

A Tenable report reveals 70% of AI cloud workloads on platforms like AWS and Azure have critical vulnerabilities, posing increased security risks.

Chinese startup DeepSeek's new AI model cuts costs but sparks global security fears, prompting bans and cyberattacks amid geopolitical tensions.

Security researcher Rapid7 has uncovered 8 vulnerabilities in 742 printer models from Brother, FUJIFILM, Ricoh, and Toshiba, with fixes now available.