Supermicro and PulseSecure Issue Advisories on Trickboot
Supermicro and PulseSecure Issue Advisories on Trickboot Companies Report Several of Their Products Are Vulnerable Doug Olenick …
Issues
CISA issues emergency directive to agencies: deal with Microsoft Exchange zero-days now
The US Cybersecurity and Infrastructure Security Agency (CISA) has issued an emergency directive following the release of fixes for …
CISA Issues Emergency Directive on In-the-Wild Microsoft Exchange Flaws
Following Microsoft’s release of out-of-band patches to address multiple zero-day flaws in on-premises versions of Microsoft Exchange …
API Security Weekly: Issue #123
This week, we learn about the recent serious API vulnerability in VMware vCenter (if you have one, update ASAP!), why query and path …
NSA Issues Guidance on Zero Trust Implementation
The US National Security Agency has issued its zero trust guidance aimed at securing critical networks and sensitive data within key …
API Security Weekly: Issue #122
This week, we take a look at the recent data spill incident at Clubhouse, the (poor) state of API security in major healthcare mobile …
API Security Weekly: Issue #121
This week, we take a look at the recent API vulnerability at chess.com, resources for GraphQL API security, and some API security advice …
NZ Reserve Bank Issues Update on Accellion Breach
Reserve Bank of New Zealand Gov. Adrian Orr The Reserve Bank of New Zealand issued an update Monday on the data breach it sustained in …
Biden Assesses U.S. Policies on China Cybersecurity Issues
The Biden administration is reviewing former President Donald Trump’s policies addressing potential national security and cybersecurity …
Mercedes Issues eCall Recall
Luxury car manufacturer Mercedes-Benz AktienGesellschaft has recalled over a million vehicles following the discovery of an emergency call …
API Security Weekly: Issue #120
This week, we take a look at the security issues in cheap video doorbells and security cameras, as well as tutorials and webinars on …
Microsoft Issues Second Patch for Netlogon Vulnerability
Microsoft has finally pushed out the second half of the software patch for the “Zerologon” privilege escalation vulnerability in the …