The IT industry is stalling on SBOMs when it should be working on best practice
SBOMs will be key to dealing with the next big vulnerability and incredibly useful in the fight to minimise the effects of smaller weaknesses.
Microsoft Exchange and Log4j continue to be top points of compromise
Arctic Wolf, a global specialist in security operations, has published its annual Arctic Wolf Labs Threat Report, revealing a year of turbulence.
FortiGuard Labs reports an increase of 50% in wiper malware
Ransomware threats remain at peak levels with no evidence of slowing down globally with new variants enabled by Ransomware-as-a-Service (RaaS).
Iran-sponsored group using GitHub to deploy custom malware
The Secureworks Counter Threat Unit (CTU) has uncovered a subgroup of Iranian Cobalt Mirage using GitHub to store and deploy malware.
Optus, Medibank – and supply chains flying under the radar
Software supply chain attacks are becoming the biggest concern in cyber security, with organisations globally at risk.
72% of organisations remain vulnerable to Log4j vulnerability
The data highlights legacy vulnerability remediation challenges, which are the root cause of the majority of data breaches.
Time to rethink how to fix software supply chain vulnerabilities
IT teams are still grappling with the Log4Shell vulnerability, affecting Java enterprise applications and making holiday surprises likely.
Dramatic uptick in threat activity with exploits growing nearly 150%
Threat activity has spiked in Q2 2022, with malware events rising by 25%, botnets doubling, and exploit activity growing almost 150%, says Nuspire's report.
New report reveals evolving techniques targeting cloud-native environments
Companies are adopting cloud-native technologies faster than ever before. Unfortunately, with new technology comes new threats and challenges.
Attackers using Log4Shell vulnerability to deliver backdoors
Attackers are using the Log4Shell vulnerability to deliver backdoors and profiling scripts to unpatched VMware Horizon servers.
Cloud threat actors hone in on vulnerabilities, report finds
As world governments issue warnings over the increasing cyber crime threat, the report's findings highlight common threats businesses should protect against.
APAC businesses still battling U.S. Log4Shell attacks
Log4Shell attacks prove a continued and complex threat to APAC businesses, according to security company Barracuda.
Log4Shell threat remains extremely high - Barracuda
The quantity of cyber attacks targeting the Log4Shell complex of vulnerabilities in Log4j still remains extremely high, according to Barracuda Networks.
Trend Micro helps uncover critical file sharing Samba bug
Trend Micro discovers critical vulnerability in Samba file sharing protocol, advises urgent patching for affected organisations.
The aftermath of Log4j - What can be done to protect businesses?
Last year's Apache Log4j vulnerability created a lot of chaos, so what can be done to protect companies from the security implications?.
New RCE bug is making APAC businesses vulnerable to Log Injection attacks
A new remote code execution bug could be making businesses in Asia Pacific vulnerable to Log4Shell log injection attacks.
Cyberattacks increased by 50% in 2021, peaking in December due to Log4J exploits
Cyberattacks increased by 50% in 2021, peaking in December due to Log4J exploits, according to new research from Check Point Software.
Log4Shell zero day vulnerability most significant security threat of past decade
The Log4Shell zero day vulnerability has resulted in over 102 million exploitation attempts since its disclosure, says Imperva Research Labs.
Logjam: Log4j exploit attempts continue in globally distributed scans, attacks
Log4j exploit attempts persist globally, with evidence of scans and attacks, according to Sophos threat researcher Sean Gallagher.