Zimbra RCE Bug Under Active Attack
October 10 2022A flaw in unpatched Zimbra email servers could allow attackers to obtain remote code execution by pushing malicious files past filters.
Read moreMicrosoft calls it "Modern Auth", though it's a decade old, and is finally forcing Exchange Online customers to switch to it.
Read moreMicrosoft calls it "Modern Auth", though it's a decade old, and is finally forcing Exchange Online customers to switch to it.
Read more6 Things Every CISO Should Do the First 90 Days on the Job
October 10 2022A CISO's responsibilities have evolved immensely in recent years, so their first three months on the job should look a different today than they might have several years ago.
Read moreComplex Impersonation Story
October 10 2022This is a story of one piece of what is probably a complex employment scam. Basically, real programmers are having their resumes copied and co-opted by scammers, who...
Read moreAbout 1 in 5 phishing email messages reach workers' inboxes, as attackers get better at dodging Microsoft's platform defenses and defenders run into processing limitations.
Read moreCredential Harvesting Is Retail Industry’s Top Threat
October 7 2022Why bother with new tactics and exploits when the old tricks are still effective?
Read moreFriday Squid Blogging: Emotional Support Squid
October 7 2022The Monterey Bay Aquarium has a video—”2 Hours Of Squid To Relax/Study/Work To“—with 2.4 million views. As usual, you can also use this squid post to talk about the security...
Read moreA boom in artificial intelligence-powered detection and remediation tools pushes security spending to the top of the AI market, according to Forrester.
Read moreSome 400 mobile apps have posed as legitimate software on Google Play and the Apple App Store over the past year, and were designed to steal Facebook user credentials.
Read more
Recent Comments