Security News > 2023 > December
Cloud-based security initiatives, such as Secure Access Service Edge and Security Service Edge, comprising Secure Web Gateway, Cloud Access Security Brokers, Data Loss Prevention, and Zero Trust Network Access, effectively push security to wherever the corporate users, devices, and resources are - all via the cloud. For starters, this hybrid security architecture adds up the cost and complexity of managing disparate security solutions, something organizations desperately attempt to overcome with cloud-based converged security stacks.
Nearly 72% of applications in the financial services sector contain security flaws, according to Veracode. Despite the alarming figure, this rate of software vulnerability was the lowest of all industries analyzed and has improved since last year.
Apple has released software updates for iOS, iPadOS, macOS, and Safari web browser to address two security flaws that it said have come under active exploitation in the wild on older versions of...
Failing to have the correct human oversight over the network can open up opportunities for cybercriminals to find vulnerabilities in underserved setups. It's perhaps this level of vulnerability that is creating concern among ClOs and network engineers.
Multiple security vulnerabilities collectively named LogoFAIL affect image-parsing components in the UEFI code from various vendors. Discovering the LogoFAIL vulnerabilities started as a small research project on attack surfaces from image-parsing components in the context of custom or outdated parsing code in UEFI firmware.
Multiple security vulnerabilities collectively named LogoFAIL affect image-parsing components in the UEFI code from various vendors. Discovering the LogoFAIL vulnerabilities started as a small research project on attack surfaces from image-parsing components in the context of custom or outdated parsing code in UEFI firmware.
Meta and Google have disclosed what they allege are offensive cyber ops conducted by China. The op wasn't pro-Beijing, but Meta found in mid-2023 "a small portion of this network's accounts changed names and profile pictures from posing as Americans to posing as being based in India."