Vulnerability
-
CISA urges use of memory safe code in software development
Unsafe programming languages, like C and C++, account for more than 70% of security vulnerabilities.
By David Jones • Sept. 22, 2023 -
White House, federal cyber leaders pledge renewed support for open source security
CISA released a roadmap for open source software security as industry officials convened to map out additional steps to protect federal agencies and the larger ecosystem.
By David Jones • Sept. 13, 2023 -
High-profile CVEs turn up in vulnerability exploit sales
Flashpoint observed 27 vulnerability exploits listed for sale or purchased on the dark web during the first half of the year. One-third were linked to Microsoft products.
By Matt Kapko • Sept. 12, 2023 -
Cisco BroadWorks vulnerability snags highest CVSS score
There are no workarounds for the vulnerability, which could expose confidential data if exploited by a threat actor with forged administrative access.
By Matt Kapko • Sept. 11, 2023 -
Barracuda patch bypassed by novel malware from China-linked threat group
Mandiant uncovered a months-long cyber espionage campaign targeting high value government entities and technology firms in the U.S. and abroad.
By David Jones • Sept. 1, 2023 -
Software industry urged to assume risk on open source security
The Open Source Security Foundation called on commercial and non-commercial organizations that use open source software components to adopt better security practices.
By David Jones • Aug. 25, 2023 -
Barracuda ESG zero-day exploit still under way after patches fail
The FBI said users need to isolate and replace affected appliances as threat actors continue to target the remote command injection vulnerability.
By David Jones • Aug. 24, 2023 -
Cuba ransomware group exploits Veeam to hit critical infrastructure
The threat actor also used malicious tools from previous campaigns, according to BlackBerry research.
By Matt Kapko • Aug. 21, 2023 -
White House wants input on open source security, memory-safe languages
Federal agencies put out a request for information Thursday, building on Biden administration priorities to help secure open source post-Log4j.
By David Jones • Aug. 11, 2023 -
Inside the most-commonly exploited CVEs of 2022
Delayed patching and unmet secure-by-design principles are aggravating the risk of compromise, the Five Eyes warned Thursday.
By Matt Kapko • Aug. 4, 2023 -
Tenable CEO calls out Microsoft delay on months-old Azure vulnerability
Microsoft has been dragging its feet to fully resolve the issue more than four months after it was discovered, CEO Amit Yoran said.
By David Jones • Aug. 3, 2023 -
Businesses improved cyber incident response times following Log4j, report finds
An Immersive Labs study showed security teams improved response times during attacks, but post-incident recovery still lagged.
By David Jones • Aug. 2, 2023 -
Photo illustration by Danielle Ternes/Cybersecurity Dive; photograph by yucelyilmaz via Getty Images
Valid account credentials are behind most cyber intrusions, CISA finds
The success rate of these techniques underscores the staying power of the most common methods threat actors use to gain initial access to targeted systems.
By Matt Kapko • July 28, 2023 -
Rockwell Automation, Honeywell warned of critical vulnerabilities in industrial products
Authorities and researchers warn that attackers could exploit the vulnerabilities for remote takeover and potentially destructive activity.
By David Jones • July 14, 2023 -
Deep Dive
MOVEit mass exploit timeline: How the file-transfer service attacks entangled victims
The slow-moving disaster has ensnared some of the world's largest enterprises. Cybersecurity experts expect further damage to come.
By Matt Kapko • Updated Sept. 25, 2023 -
RomCom uses Word documents in new phishing campaign, Microsoft warns
The hackers are known to use trojanized versions of legitimate software from Adobe, SolarWinds, KeePass and others.
By David Jones • July 12, 2023 -
Hackers using TrueBot malware for phishing attacks in US, Canada, officials warn
Threat actors have been leveraging a known vulnerability in Netwrix Auditor to exfiltrate data from targeted entities since May.
By David Jones • July 7, 2023 -
Most Fortinet FortiGate firewalls remain vulnerable to critical CVE
Threat actors could exploit the remote code execution vulnerability, disclosed June 12, to initiate data breaches, ransomware attacks and other damages.
By Matt Kapko • July 6, 2023 -
MOVEit vulnerability snags almost 200 victims, more expected
The education sector has been hit particularly hard as many widely used vendors in the space confirm impacts linked to the mass exploited vulnerability.
By Matt Kapko • July 5, 2023 -
MOVEit vulnerability ensnares more victims
Some organizations have been impacted due to their direct use of MOVEit while others have been exposed by third-party vendors.
By Matt Kapko • June 27, 2023 -
Big names disclose MOVEit-related breaches, including PwC, EY and Genworth Financial
More than 100 organizations have been hit as part of the MOVEit attack campaign, including PBI Research Services, which exposed millions of customer data files to theft.
By David Jones • June 23, 2023 -
Progress Software faces federal class action lawsuits as MOVEit breach exposure widens
Louisiana residents allege their personal financial information was put at risk after the state's motor vehicles department had data exposed in the MOVEit data breach.
By David Jones • June 21, 2023 -
US puts $10M bounty on Clop as federal agencies confirm data compromises
Additional private sector companies have disclosed attacks after multiple vulnerabilities were found in MOVEit Transfer software.
By David Jones • June 20, 2023 -
Another MOVEit vulnerability found, as state and federal agencies reveal breaches
The third vulnerability since Progress Software first disclosed a MOVEit Transfer zero day arrived just as CISA officials said a “small number” of federal agencies were impacted.
By Naomi Eide • June 16, 2023 -
Clop names a dozen MOVEit victims, but holds back details
As its deadline expired, the ransomware group released the first batch of victim organizations, most of which were U.S.-based, ReliaQuest found.
By Naomi Eide • June 15, 2023