Cybersecurity Blog
Update: Boeing Confirms Attempted $200 Million Ransomware Extortion Attempt
Boeing confirmed to CyberScoop that it is the unnamed multinational aeronautical and defense corporation referenced in ...
With Nation-State Threats in Mind, Nearly 70 Software Firms Agree to Secure by Design Pledge
The CISA announced the first round of commitments at the RSA Conference on Wednesday, with Director Jen Easterly warning ...
Poland Says it was Targeted by Russian Military Intelligence Hackers
Poland’s CERT-PL said on Wednesday that it had observed a large-scale malware campaign, likely carried out by the hacker ...
Generative AI is a Looming Cybersecurity Threat
Researchers have not identified any AI-engineered cyberattack campaigns, yet, but they say it’s only a matter of time ...
Security Tools Fail to Translate Risks for Executives
CISOs stress the importance of DevSecOps automation to mitigate risks associated with AI and emphasize the need for ...
Mirai Botnet Exploits Ivanti Connect Secure Flaws for Payload Delivery
In the attack chain observed by Juniper Threat Labs, CVE-2023-46805 is exploited to gain access to the ...
CISA Extends CIRCIA Rule Comment Period
The CISA will prolong the comment period for new regulations under the Cyber Incident Reporting for Critical ...
Findings Show MFA Bypass in Microsoft Azure Entra ID Using Seamless SSO
Researchers at Pen Test Partners successfully bypassed Azure’s MFA requirement for SSO by changing the user-agent of a ...