What is Infrastructure as Code? The Best Way to Fully Control Your Cloud Configuration
Cloud-first computing has taken the tech world by storm, and for good reason. Cloud native infrastructure gives developers and organizations the tools to create and scale new software more...
Thousands of Humana customers have their medical data leaked online by threat actors
An SQL database containing what appears to be highly sensitive health insurance data of more than 6,000 patients has been leaked on a popular hacker forum.The author of the...
Building the Business Case for DevSecOps
“Resistance to change is proportional to how much the future might be altered by any given act.” — Stephen King
Humans are naturally resistant to change. The fear of the...
Law Firm to the Fortune 500 Breached with Ransomware
Deep-pocketed clients’ customers & suppliers could be in the attacker’s net, with potential PII exposure from an A-list clientele such as Apple, Boeing and IBM.
Campbell Conroy & O’Neil, P.C....
M-Trends 2021: A View From the Front Lines
We are thrilled to launch M-Trends 2021, the 12th edition of our annual FireEye Mandiant publication. The past year has been unique, as we witnessed an unprecedented combination of...
Safari Zero-Day Used in Malicious LinkedIn Campaign
Researchers shed light on how attackers exploited Apple web browser vulnerabilities to target government officials in Western Europe.
Threat actors used a Safari zero-day flaw to send malicious links...
Technical Advisory – NXP i.MX SDP_READ_DISABLE Fuse Bypass (CVE-2022-45163)
Vendor: NXP Semiconductors
Vendor URL: https://www.nxp.com
Affected Devices: i.MX RT 101x, i.MX RT102x, i.MX RT1050/6x, i.MX 6 Family, i.MX 7 Family, i.MX8M Quad/Mini, Vybrid
Author: Jon Szymaniak
CVE: CVE-2022-45163
Advisory URL: https://community.nxp.com/t5/Known-Limitations-and-Guidelines/SDP-Read-Bypass-CVE-2022-45163/ta-p/1553565
Risk: 5.3...
Google Details iOS, Chrome, IE Zero-Day Flaws Exploited Recently in the Wild
By: Ravie Lakshmanan
Threat intelligence researchers from Google on Wednesday shed more light on four in-the-wild zero-days in Chrome, Safari, and Internet Explorer browsers that were exploited by malicious actors...
Pair of Galaxy App Store Bugs Offer Cyberattackers Mobile Device Access
The Galaxy App Store, the official mobile app store available on Samsung devices, has two vulnerabilities, which, if exploited, could allow threat actors to install a malicious application without the...
