Security News

Top Security Posture Vulnerabilities Revealed
2024-01-30 10:49

Each New Year introduces a new set of challenges and opportunities for strengthening our cybersecurity posture. It's the nature of the field – the speed at which malicious actors carry out...

52% of Serious Vulnerabilities We Find are Related to Windows 10
2024-01-22 11:22

We analyzed 2,5 million vulnerabilities we discovered in our customer’s assets. This is what we found. Digging into the data The dataset we analyze here is representative of a subset of clients...

Urgent: GitLab Releases Patch for Critical Vulnerabilities - Update ASAP
2024-01-12 13:03

GitLab has released security updates to address two critical vulnerabilities, including one that could be exploited to take over accounts without requiring any user interaction. Tracked...

Top LLM vulnerabilities and how to mitigate the associated risk
2024-01-10 05:30

As large language models become more prevalent, a comprehensive understanding of the LLM threat landscape remains elusive. Successful prompt injection attacks can lead to cross-plugin request forgery, cross-site scripting and training data extraction, each of which put company secrets, personal user data and essential training data at risk.

Microsoft's January 2024 Windows Update Patches 48 New Vulnerabilities
2024-01-10 05:26

Microsoft has addressed a total of 48 security flaws spanning its software as part of its Patch Tuesday updates for January 2024. Of the 48 bugs, two are rated Critical and 46 are rated Important...

CISA Flags 6 Vulnerabilities - Apple, Apache, Adobe , D-Link, Joomla Under Attack
2024-01-10 04:50

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added six security flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. This...

Attackers could use vulnerabilities in Bosch Rexroth nutrunners to disrupt automotive production
2024-01-09 15:45

Researchers have discovered over two dozen vulnerabilities in "Smart" cordless nutrunners manufactured by Bosch Rexroth that could be exploited to make the devices inoperable or their output unreliable. The device supports a number of communication protocols that are used to integrate it with SCADA systems, PLCs, or other production devices.

Alert: New Vulnerabilities Discovered in QNAP and Kyocera Device Manager
2024-01-09 09:52

A security flaw has been disclosed in Kyocera’s Device Manager product that could be exploited by bad actors to carry out malicious activities on affected systems. "This vulnerability allows...

Bug or Feature? Hidden Web Application Vulnerabilities Uncovered
2023-12-15 11:08

Web Application Security consists of a myriad of security controls that ensure that a web application: Functions as expected. Cannot be exploited to operate out of bounds. Cannot initiate...

New Security Vulnerabilities Uncovered in pfSense Firewall Software - Patch Now
2023-12-15 11:02

Multiple security vulnerabilities have been discovered in the open-source Netgate pfSense firewall solution called pfSense that could be chained by an attacker to execute arbitrary commands on...