Governance, Risk and ComplianceMalware attack targets US-Taiwan defense conferenceShaun NicholsSeptember 16, 2024A conference connecting defense industry professionals in the U.S. and Taiwan has come under attack from malware threat actors.
RansomwareRansomHub releases 487GB of Kawasaki Motors Europe dataSteve ZurierSeptember 16, 2024Security pros say U.S. companies should stay vigilant as RansomHub remains active worldwide.
Application securityCrowdStrike outage leads Microsoft to plan more ‘security capabilities outside of kernel’Laura FrenchSeptember 13, 2024Security providers and regulators attended the Windows Endpoint Security Ecosystem Summit earlier this week.
Network SecurityScammers pilfered $5.6 billion in cryptocurrency in 2023Shaun NicholsSeptember 13, 2024The FBI received some 69,000 cryptocurrency related complaints on the year.
Vulnerability ManagementGitLab patches bug that could expose a CI/CD pipeline to supply chain attackSteve ZurierSeptember 13, 2024Security pros called this GitLab patch an urgent one because an exploited CI/CD pipeline could lead to a serious supply chain compromise.
Network SecurityStability concerns holding back patching practicesShaun NicholsSeptember 12, 2024The stability cost of patching a bug can prevent many developers from remedying a known flaw in their own software.
Network SecurityOld WHOIS domain could have issued countless fraudulent TLS/SSL certificatesLaura FrenchSeptember 12, 2024Researchers bought an expired WHOIS server domain for $20 and quickly received millions of WHOIS queries.
Security Staff Acquisition & DevelopmentPercentage of women, minorities in tech workforce unchanged since 2005Steve ZurierSeptember 12, 2024Women still make up only 22% of the high tech workforce, according to EEOC.
Cloud SecurityHackers use cloud services to target financial and insurance firmsShaun NicholsSeptember 11, 2024Hackers are using cloud service attacks as a way to go after big-money targets in the insurance and financial industries.
Application securityGallup cross-site scripting error could have led to data theftLaura FrenchSeptember 11, 2024Attacks leveraging the survey site’s credibility have the potential to enable phishing and disinformation.