Security vulnerabilities stories - Page 8

Security experts underscore the importance of immediate remediation for vulnerabilities to mitigate risks and protect organisational assets.

Tenable releases new Vulnerability Intelligence and Exposure Response tools to aid IT and cloud environments in prioritising and addressing critical security threats.

Elastic Security Labs has uncovered serious security vulnerabilities in Microsoft's Smart App Control and SmartScreen, posing risks of undetected cyber attacks.

SentinelOne unveils advanced generative AI features for its Singularity Platform, enhancing threat prevention and response, with innovations like the AI-powered Purple AI analyst.

Almost 40% of systems tested by Picus Security are vulnerable to complete takeover, with macOS being notably weaker in stopping cyber-attacks.

AttackIQ launches Mission Control, enhancing Enterprise Breach and Attack Simulation for distributed teams. The new feature aims to streamline security testing and improve ROI.

ShinyHunters claimed responsibility for compromising 33 million Twilio users' phone numbers via the Authy 2FA app, sparking major security concerns.

Microsoft's July 2024 Patch Tuesday reveals 139 vulnerabilities, including two zero-days under active exploitation: Hyper-V's EoP and MSHTML Spoofing.

Endor Labs reveals major security flaws in CocoaPods, threatening apps like Instagram and Uber. Critical CVEs could impact Swift and Objective-C supply chains.

With tech giants grappling with data breaches and security flaws, experts stress the urgent need for multifactor authentication and stronger identity security to protect against rising cyber threats.

NTT DATA's 2024 Infrastructure Lifecycle Management Report finds 80% of global firms hindered by outdated tech. ANZ leads with 100% of executives reporting impaired business agility due to legacy systems.

Ricoh partners with Rimini Street to support and protect its Oracle systems, aiming to optimise current systems while exploring a next-gen ERP strategy.

Appdome launches SDKProtect to enhance mobile SDK security. This service aims to counteract threats like root detection evasion and data tampering, ensuring safer applications.

Bitdefender's report uncovers Discord as a hotbed for malware, phishing, and scams, with 50,000 dangerous links detected in six months, targeting Australia and Indonesia among others.

A Claroty study reveals that 13% of operational technology assets have insecure internet connections and 36% have known exploited vulnerabilities, posing severe cybersecurity risks.

GitLab has announced cutting-edge AI-driven updates to its DevSecOps platform, including Duo Enterprise and CI/CD catalog, promising enhanced security and efficiency.

Radware excels in GigaOm's 2024 AAS Security Report, gaining recognition as the only vendor to score top marks for AI-based vulnerability detection and bot management.

Semperis bolsters partnership with Veritas Technologies, enhancing cyber resilience against ransomware threats by using advanced attack-path analysis methods, streamlining data protection methods.

Cyber security firm Claroty exposes a critical flaw in current vulnerability management strategies, revealing a colossal 38% of the riskiest cyber-physical system (CPS) assets go undetected by conventional methods.

ForAllSecure reveals new AI-powered tool, Mayhem, a dynamic software bill of materials tool that proactively battles exploitable application vulnerabilities.