Mitel has released security updates to address a critical security flaw in MiVoice MX-ONE that could allow an attacker to bypass authentication protections. “An authentication bypass vulnerability has been identified…
Virtualization and networking infrastructure have been targeted by a threat actor codenamed Fire Ant as part of a prolonged cyber espionage campaign. The activity, observed this year, is primarily designed…
Cybersecurity researchers have shed light on a new versatile malware loader called CastleLoader that has been put to use in campaigns distributing various information stealers and remote access trojans (RATs).…
Sophos and SonicWall have alerted users of critical security flaws in Sophos Firewall and Secure Mobile Access (SMA) 100 Series appliances that could be exploited to achieve remote code execution.…
PEP climbs to £1.4 million Herbert Smith Freehills (HSF) has reported solid financial results for the year prior to its summer merger with US outfit Kramer Levin. The firm, which…
When security leaders embrace this truth and learn to speak in the language of leadership, they don’t just protect the enterprise, they help lead it forward. – Read More
A joint advisory with international partners highlights an Iranian APT exploiting Microsoft Exchange and Fortinet vulnerabilities – Read More
Is Managing Customer Logins and Data Giving You Headaches? You’re Not Alone! Today, we all expect super-fast, secure, and personalized online experiences. But let’s be honest, we’re also more careful…
A July 8 patch for the SharePoint Server zero-day flaw, which resulted in a global attack on nearly 100 organizations over the weekend starting July 18, had failed to fully…
You wouldn’t run your blue team once a year, so why accept this substandard schedule for your offensive side? Your cybersecurity teams are under intense pressure to be proactive and…
The Tibetan community has been targeted by a China-nexus cyber espionage group as part of two campaigns conducted last month ahead of the Dalai Lama’s 90th birthday on July 6,…
A hacker managed to insert destructive system commands into Amazon’s Visual Studio Code extension used for accessing its AI-powered coding assistant, Q, which was later distributed to users through an…
Microsoft has revealed that one of the threat actors behind the active exploitation of SharePoint flaws is deploying Warlock ransomware on targeted systems. The tech giant, in an update shared…
Regional NQs now on £65.5k Gowling WLG has increased pay for its newly qualified (NQ) solicitors, with London lawyers receiving a £7,000 boost to £105,000. NQs in the firm’s Birmingham…
The use of threat intelligence has been standard for CISOs for years, with security chiefs recognizing that the additional data about the threat landscape helps them better prepare for and…