Cybersecurity researchers have uncovered over 20 configuration-related risks affecting Salesforce Industry Cloud (aka Salesforce Industries), exposing sensitive data to unauthorized internal and external parties. The weaknesses affect various components like…
It’s unclear what kind of cyberattack occurred, but UNFI proactively took certain systems offline, which has disrupted the company’s operations. – Read More
The financially motivated threat actor known as FIN6 has been observed leveraging fake resumes hosted on Amazon Web Services (AWS) infrastructure to deliver a malware family called More_eggs. “By posing…
(Sponsored content) Brad Freeman, Director of Technology and Co-Founder. SenseOn. – Read More
Cybersecurity researchers have shed light on a previously undocumented Rust-based information stealer called Myth Stealer that’s being propagated via fraudulent gaming websites. “Upon execution, the malware displays a fake window…
Backdoors lurking in legitimate-looking code contain file-deletion commands that can destroy production systems and cause massive disruptions to software supply chains. – Read More
SSH keys enable critical system access but often lack proper management. This security blind spot creates significant risk through untracked, unrotated credentials that persist across your infrastructure. – Read More
Available to the public and debuting at the Gartner Security & Risk Management Summit, BrowserTotal is a first of its kind browser security assessment tool conducting more than 120 tests…
Two malicious npm packages have been found posing as legitimate utilities to silently install backdoors for complete production wipeout. According to Socket research, the packages “express-api-sync” and “system-health-sync-api,” are designed…
Modern enterprise networks are highly complex environments that rely on hundreds of apps and infrastructure services. These systems need to interact securely and efficiently without constant human oversight, which is…
A destructive new malware, dubbed PathWiper, has struck Ukraine’s critical infrastructure, erasing data and disabling essential systems, according to a recent Cisco Talos report. Attributed with high confidence to a…
Google has stepped in to address a security flaw that could have made it possible to brute-force an account’s recovery phone number, potentially exposing them to privacy and security risks.…
Multicloud architectures are becoming more common across enterprises, as they enable IT leaders to strategically choose best-of-breed services from multiple providers. But with flexibility comes greater complexity, and security challenges…
The threat actor known as Rare Werewolf (formerly Rare Wolf) has been linked to a series of cyber attacks targeting Russia and the Commonwealth of Independent States (CIS) countries. “A…
Apply now The Commercial Bar Association (COMBAR) has launched this year’s mentorship scheme for underrepresented groups, with a record 26 leading commercial chambers involved. This year, COMBAR’s programme offers around…