Tag: vulnerabilities

February 28, 2024

Nearly three-quarters of codebases assessed for risk by Synopsis in 2023 contained open source components with high-risk vulnerabilities, according to a just-released report from the company, a provider of application security testing tools. While the number of codebases with at […]

February 14, 2024

Effectively securing enterprise Wi-Fi networks is about more than simply setting up the latest encryption or implementing 802.1X authentication. Those are certainly important, but there are many more vulnerabilities to consider. Whether you’re trying to troubleshoot strange Wi-Fi behavior or […]

October 17, 2023

Cyber vulnerabilities are among a CIO’s greatest fears. And with good reason. No industry or organization is immune to the growing frequency, sophistication and success of cyberattacks and the steep, often devastating, organizational costs they incur. Yet, after collectively investing […]

March 2, 2023

No IT leader wants to tell the C-suite about a serious breach that took advantage of a known infrastructure vulnerability. Hackers develop new attack strategies so often that it’s easy to forget a fundamental truth about cybersecurity: hackers don’t have […]

March 1, 2023

Known vulnerabilities, compromise of legitimate package, and name confusion attacks are expected to be among the top ten open source software risks in 2023, according to a report by Endor Labs. The other major open source software risks, according to […]

November 2, 2022

Ransomware changes rapidly. At a technical level, attack infrastructure can change by the minute, operationally changing attack techniques while strategically targeting certain sectors, industries or regions at appropriate times. Access brokers work across multiple groups, operators switch botnets, and malware […]

May 25, 2021

Cyber attacks exploiting vulnerabilities in unpatched legacy systems, via consumer applications such as TikTok, and originating from friendly countries may be a bigger risk to the average organisation than attacks through novel zero-days conducted by Chinese or Russian APT groups, […]