CISA warned U.S. federal agencies to secure their networks against attacks exploiting three critical vulnerabilities affecting Ivanti Endpoint Manager (EPM) appliances. […]
Category Archives: News
Unpatched TP-Link Archer routers have become the target of a new botnet campaign dubbed Ballista, according to new findings from the Cato CTRL team. “The botnet exploits a remote code execution (RCE) vulnerability in TP-Link Archer routers (CVE-2023-1389) to spread itself automatically over the Internet,” security researchers Ofek Vardi and Matan Mittelman said in a […]
11
Mar
Mar
Google is contributing $1.5 million for a regenerative agriculture program with Indigo Ag, aiming to replenish an estimated 1.5 billion gallons of water in Oklahoma over…
In cybersecurity, confidence is a double-edged sword. Organizations often operate under a false sense of security, believing that patched vulnerabilities, up-to-date tools, polished dashboards, and glowing risk scores guarantee safety. The reality is a bit of a different story. In the real world, checking the right boxes doesn’t equal being secure. As Sun Tzu warned, […]
Inside the most innocent-looking image, a breathtaking landscape, or a funny meme, something dangerous could be hiding, waiting for its moment to strike. No strange file names. No antivirus warnings. Just a harmless picture, secretly concealing a payload that can steal data, execute malware, and take over your system without a trace. This is steganography, […]
Maritime and logistics companies in South and Southeast Asia, the Middle East, and Africa have become the target of an advanced persistent threat (APT) group dubbed SideWinder. The attacks, observed by Kaspersky in 2024, spread across Bangladesh, Cambodia, Djibouti, Egypt, the United Arab Emirates, and Vietnam. Other targets of interest include nuclear power plants and […]
Taiwanese company Moxa has released a security update to address a critical security flaw impacting its PT switches that could permit an attacker to bypass authentication guarantees. The vulnerability, tracked as CVE-2024-12297, has been assigned a CVSS v4 score of 9.2 out of a maximum of 10.0. “Multiple Moxa PT switches are vulnerable to an […]
10
Mar
Mar
In 2010, we embarked on a journey to build a cloud platform that would empower organizations globally. In February, we celebrated 15 years of bringing Azure innovation to the world, and today, we celebrate Microsoft again being recognized as a leader in Forrester’s recently published report, The Forrester Wave™: Public Cloud Platforms, Q4 2024. We […]
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added five security flaws impacting Advantive VeraCore and Ivanti Endpoint Manager (EPM) to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation in the wild. The list of vulnerabilities is as follows – CVE-2024-57968 – An unrestricted file upload vulnerability in Advantive […]
10
Mar
Mar
Hello Windows Insiders, today we are releasing Windows 11 Insider Preview Build 26120.3380 (KB5053660) to the Dev and Beta Channels. As a reminder – we’re also offering the same Dev Channel updates based on Windows 11, version 24H2 to Windows Insiders in the Beta Channel. These updates will be optional at first, so if you are in the […]