No mayday call necessary for the year’s fifth Patch Tuesday
A return to pre-April CVE volumes, mostly for Windows, though two vulns – or is it three? -- are already…
May 2024
Microsoft Patch Tuesday security updates for May 2024 fixes 2 actively exploited zero-days
Microsoft Patch Tuesday security updates for May 2024 fixed 59 flaws across various products including an actively exploited zero-day. Microsoft…
CISOs Are Worried About Their Jobs & Dissatisfied With Their Incomes
The research shows a significant drop in the number of tech CISOs that got a base salary increase in the…
Critical Bug Could Open 50K+ Tinyproxy Servers to DoS, RCE
Patch now: CVE-2023-49606 in the open source, small-footprint proxy server can potentially lead to remote code execution.
Security Teams & SREs Want the Same Thing: Let’s Make It Happen
Site reliability engineers (SREs) and security teams are more powerful when they work together, and being able to combine our…
Microsoft Will Hold Executives Accountable for Cybersecurity
At least a portion of executive compensation going forward will be tied to meeting security goals and metrics.
LockBit Honcho Faces Sanctions, With Aussie Org Ramifications
Australian businesses and individuals now face government fines and consequences for paying ransoms or interacting with assets owned by LockBitSupp,…
Chinese Hackers Deployed Backdoor Quintet to Down MITRE
MITRE's hackers made use of at least five different Web shells and backdoors as part of their attack chain.
Wiz Announces $1B Funding Round, Plans More M&A
Much of the funding will be used for product development and talent acquisition to cover more ground as the cybersecurity…
Does CISA’s KEV Catalog Speed Up Remediation?
Vulnerabilities added to the CISA known exploited vulnerability (KEV) list do indeed get patched faster, but not fast enough.