October 20, 2017 Security Vulnerability Puts Linux Kernel at Risk 2 min read - A security vulnerability in the Linux kernel could allow external attackers to escalate privileges and execute malicious code.
October 18, 2017 Researcher Uncovers Shipping Industry Security Flaws 2 min read - Using a simple online search engine, a researcher exposed several shipping industry security gaps that could leave container ships vulnerable to threats.
Software Vulnerabilities October 17, 2017 Don’t Just Put Out the Zero-Day Fire — Get Rid of the Fuel 5 min read - The best way to remediate zero-day threats is to focus on proactively assessing and patching the vulnerabilities that facilitate them.
October 2, 2017 Malware Mines Monero on Vulnerable Servers 2 min read - Security researchers reported that threat actors have been targeting vulnerable servers to mine for cryptocurrency since about May 2017.
September 28, 2017 Thermal Security Camera Flaws Could Let Cybercriminals Launch Remote Attacks 2 min read - Cybercriminals could launch remote attacks through thermal security camera vulnerabilities. The flaw, first found in FLIR, could also expose other systems.
Endpoint September 25, 2017 Worried About Apache Struts? Stay One Step Ahead of Endpoint Attacks 2 min read - Security teams needs advanced visibility into all endpoints across the organization to prevent endpoint attacks such as the recent Apache Struts exploit.
Application Security September 21, 2017 The Myth of Mutual Exclusivity: Making the DevOps Process More Agile Without Compromising Security 2 min read - Does agility make the DevOps process less secure? A new survey suggested that, contrary to popular belief, security and agility aren't mutually exclusive.
Application Security September 20, 2017 Don’t Sweep Web Application Penetration Testing Under the Rug 3 min read - Although it is one of the most crucial components of any security strategy, web application penetration testing is often neglected.
September 19, 2017 The Telltale Text File: Security Researcher Proposes Standardization for Reporting Vulnerabilities 2 min read - Security researcher Ed Foudil proposed adding a security.txt to every website to standardize the process of reporting vulnerabilities.
Advanced Threats September 14, 2017 Downward Trend in Publicly Available Exploit Code? Don’t Ease Up on Patch Management Just Yet 5 min read - IBM X-Force reported a downward trend in publicly available exploit code, but security teams must still prioritize vulnerability and patch management.