UK Electoral Commission Hacked
The UK Electoral Commission discovered last year that it was hacked the year before. That’s fourteen months between the hack…
August 2023
Two unauthenticated stack buffer overflows found in Ivanti Avalanche EMM
Ivanti Avalanche EMM product is impacted by two buffer overflows collectively tracked as CVE-2023-32560. Tenable researchers discovered two stack-based buffer…
Approximately 2000 Citrix NetScaler servers were backdoored in a massive campaign
A threat actor has compromised roughly 2,000 Citrix NetScaler servers exploiting a remote code execution tracked as CVE-2023-3519. In July…
Salesforce Zero-Day Exploited to Phish Facebook Credentials
The cyberattacks used the legitimate Salesforce.com domain by chaining the vulnerability to an abuse of Facebook's Web games platform, slipping…
Burger King Serves Up Sensitive Data, No Mayo
The incident marks the second time since 2019 that a misconfiguration could have let threat actors "have it their way"…
Hawaii’s Gemini North Observatory Suspended After Cyberattack
It is unclear who the threat actors were or what kind of cyberattack was attempted on the observatory, but for…
How to Talk So Your CISO Will Listen
Tailor your business project proposal to suit the language your company's CISO speaks, be it business, technical, or compliance. Do…
How To Deal With the Vagueness in New Cyber Regulations
Recent regulations for privacy, AI, and breaches tend to be overly broad, suggesting that the rulemakers lack tech acumen.
Google, Microsoft Take Refuge in Rust Language’s Better Security
More tech giants are turning to the Rust programming language for its built-in memory safety and other security features.
Credentials for cybercrime forums found on roughly 120K computers infected with info stealers
Researchers discovered credentials associated with cybercrime forums on roughly 120,000 computers infected with information stealers. Threat intelligence firm Hudson Rock…