Security News > 2023 > June > Week in review: MOVEit Transfer critical zero-day vulnerability, Kali Linux 2023.2 released
MOVEit Transfer zero-day attacks: The latest infoProgress Software has updated the security advisory and confirmed that the vulnerability is a SQL injection vulnerability in the MOVEit Transfer web application that could allow an unauthenticated attacker to gain unauthorized access to MOVEit Transfer's database.
Kali Linux 2023.2 released: New tools, a pre-built Hyper-V image, a new audio stack, and more!Offensive Security has released Kali Linux 2023.2, the latest version of its popular penetration testing and digital forensics platform.
Why organizations should adopt a cloud cybersecurity frameworkAs cloud adoption pervades, one of the bigger security and privacy challenges for cloud service customers is having to relinquish a significant amount of control and ownership of their data and infrastructure to cloud service providers.
CISO-approved strategies for software supply chain securityIn this Help Net Security video, Tim Mackey, Head of Software Supply Chain Risk Strategy at Synopsys, discusses supply chain security practices and approaches.
The root causes of API incidents and data breachesIn this Help Net Security video, Jeremy Snyder, CEO of FireTail, talks about the main findings of their State of APIs and API Security in 2023 report.
Top public cloud security concerns for the media and entertainment industryMedia and entertainment companies are rapidly turning to cloud storage in efforts to upgrade their security measures, according Wasabi.
News URL
Related news
- Hackers target critical zero-day vulnerability in PTZ cameras (source)
- Kali Linux 2024.3 released: 11 new tools, Qualcomm Snapdragon SDM845 SoC support (source)
- GitLab warns of critical pipeline execution vulnerability (source)
- Windows vulnerability abused braille “spaces” in zero-day attacks (source)
- SolarWinds Issues Patch for Critical ARM Vulnerability Enabling RCE Attacks (source)
- Critical Ivanti Cloud Appliance Vulnerability Exploited in Active Cyberattacks (source)
- CISA Flags Critical Ivanti vTM Vulnerability Amid Active Exploitation Concerns (source)
- PoC for critical SolarWinds Web Help Desk vulnerability released (CVE-2024-28987) (source)
- That doomsday critical Linux bug: It's CUPS. Could lead to remote hijacking of devices (source)
- That doomsday critical Linux bug: It's CUPS. May lead to remote hijacking of devices (source)