Security
Headlines
HeadlinesLatestCVEs

Source

DARKReading

Researchers Pioneer PoC Exploit for NSA-Reported Bug in Windows CryptoAPI

The security vulnerability allows attackers to spoof a target certificate and masquerade as any website, among other things.

DARKReading
#vulnerability#web#windows#microsoft#git#auth#chrome
GoTo Encrypted Backups Stolen in LastPass Breach

Encrypted backups for several GoTo remote work tools were exfiltrated from LastPass, along with encryption keys.

Log4j Vulnerabilities Are Here to Stay — Are You Prepared?

Don't make perfect the enemy of good in vulnerability management. Context is key — prioritize vulnerabilities that are actually exploitable. Act quickly if the vulnerability is on a potential attack path to a critical asset.

North Korea's Top APT Swindled $1B From Crypto Investors in 2022

The DPRK has turned crypto scams into big business to replenish its depleted state coffers.

Multicloud Security Challenges Will Persist in 2023

Some predictions about impending security challenges, with a few tips for proactively addressing them.

Cybersecurity Budgets Increase for Retail & Hospitality Industry

Despite economic headwinds and layoffs in other areas, most retail and hospitality CISOs expect to add staff in 2023, according to a new report.

Can't Fill Open Positions? Rewrite Your Minimum Requirements

If you or your company can't find good infosec candidates, consider changing up the qualifications to find more nontraditional talent.