When Your Vendor Becomes Your Vulnerability

Vendor applications carry structural vulnerabilities because of how they are designed, maintained, and integrated. Banks rarely get direct access to source code. Even when they do, they cannot ...
CSO Online

Fighting AI with AI: Adversarial bots vs. autonomous threat hunters

AI hackers don’t sleep — so our defenses can’t either. Digital twins could finally help us hunt threats 24/7, before they ...
CSO OnlineOpinion

Fortinet criticized for ‘silent’ patching after disclosing second zero-day vulnerability in same equipment

CISA orders agencies to patch the FortiWeb web application firewall within seven days after news of exploits emerges.
CIO

Application Security

GitGuardian’s code security platform lets application developers quickly scan and fix hardcoded secrets (such as API keys an ...

Logitech Data Breach — What We Know As 0-Day Hack Attack Confirmed

As Logitech confirms breach, here’s what you need to know about the Clop gang hack attack — customers and consumers likely impacted by data theft.

Server Security Scanner Vulnerability Affects Up To 56M Sites

Unpatched versions of Imunify360 AV expose hosting platforms that serve up to 56 million websites to possible full server ...

Logitech confirms data breach - but says it isn't sure exactly what information was lost

Logitech reportedly only confirmed the breach after its name surfaced on Cl0p’s data leak site. Cl0p is an infamous ...
Tom's Hardware on MSN

Hackers steal 1.8 terabytes of data from PC peripheral vendor Logitech — firm says zero-day vulnerability to blame, no sensitive information stolen

Logitech has confirmed it was breached internally, likely by the Clop gang, who stole terabytes worth of data, not including ...
TechAnnouncer

Exploiting the SonicWall SSL VPN Vulnerability: What You Need to Know

Active exploitation of SonicWall SSL VPNs is happening, allowing attackers to bypass security and deploy ransomware. The main ...