Security vulnerabilities stories

DerScanner adds Supply Chain Security feature to verify third-party code, combating rising threats amid increasing open-source software cyberattacks.

Alarming new data reveals significant vulnerabilities that, if ignored, could lead to catastrophic consequences for enterprises.

Qualys, a provider of cloud-based security and compliance solutions, has been pivotal in aiding companies through their digital transformation.

Two-thirds of UK employees are endangering business cybersecurity by unauthorised app downloads, often unbeknown to IT departments, Armis research reveals.

New research shows that IT and security leaders believe Kubernetes will play a major role in app development, but are concerned about security.

GitHub announces an AI-driven platform that integrates AI into every phase of development, introducing natural language as a universal programming language.

Every organisation employing Apple devices must develop and follow a clear strategy to handle Apple’s new RSR approach to OS upgrades.

As the global financial ecosystem expands, it's getting harder for organisations to navigate the maze of cyber risks alone.

BeyondTrust’s cybersecurity experts predict the main global threats for 2024, including advanced AI threats and a rise in subscription-based model risks.

Winter Vivern cyber group targets European governments using XSS vulnerability of Roundcube Webmail server, as ESET researchers have discovered.

Generative AI tools in the wrong hands are a serious threat, which is why their use must be regulated properly.

SBOMs will be key to dealing with the next big vulnerability and incredibly useful in the fight to minimise the effects of smaller weaknesses.

Researchers have discovered vulnerabilities in the trustworthiness of GPT models, raising concerns about toxic and biased outputs.

Zyxel Networks unveils its first WiFi 7 access point, promising to revolutionise high-density business connectivity.

Global platform provider Vitrana leverages CAST technology to slash its software security vulnerabilities by 66%.

52% of security professionals prefer to accept undiscovered vulnerabilities than work with hackers, HackerOne data shows.

Hackuity, the risk-based vulnerability management provider, has launched Version 2.0 of its platform with major enhancements to support risk prioritisation.

Joint solution closes visibility gaps, optimizing vulnerability management for all managed and unmanaged devices, including IoT, IoMT and OT.

The partnership expands Interactive's cybersecurity offering and strengthens its position as a leader in the technology industry.

Interestingly, only 42% of respondents in Oceania say their organisation conducts a cyber-risk assessment at least annually, compared to 43% in 2022.

Major security flaw, 'Looney Tunables', detected in glibc, threatens Linux distributions, urgent patch recommended.

Synopsys Defensics fuzz testing software is now embedded into Keysight’s IoT Security Assessment solution, which reduces costs while speeding up time-to-market.

GOLD MELODY identified as cyber threat group selling access to compromised organisations to other criminals. Active since 2017.

The report reveals that 29% of IoT modules had no security features, exposing them to potential risks and vulnerabilities.