Yubico Issues Security Advisory As 2FA Bypass Vulnerability Confirmed
Yubico has confirmed a partial 2FA bypass issue could impact some YubiKey customers—here’s what you need to know.
Rapid7, Tenable cut to Hold at Stifel on low priority of vulnerability management
Stifel downgrades cybersecurity stocks Rapid7 and Tenable to Hold, citing cautious stance on vulnerability management.
SecurityWeek5d
CISA Warns of Second BeyondTrust Vulnerability Exploited in Attacks
Attackers have been exploiting a second vulnerability in BeyondTrust’s remote management solutions, CISA warns.
KTrust Uncovers Critical Security Vulnerability in Kubernetes, Exposing Enterprise Cloud Applications to Risk
KTrust's security research has revealed critical attack techniques exploiting interconnected vulnerabilities in Kubernetes, ...
Microsoft reveals macOS vulnerability that allowed System Integrity Protection bypass
Microsoft Threat Intelligence has revealed details of a now patched but previously unknown macOS vulnerability that could ...
Deep2h
Contrast Security Launches AVM to Enhance Application and API Security in Real-Time
AVM provides an alternative, allowing SecOps and DevOps teams to see what actual vulnerabilities exist in production ...
TAC Security's founder urges Centre to prioritise cybersecurity in Budget
Cybersecurity vulnerability management company TAC Security founder Trishneet Arora sought from the Centre actionable steps ...
Security6d
KTrust uncovers critical security vulnerability in Kubernetes
These capabilities enable attackers to cause significant damage, from impersonating organizations in fraudulent activities to ...
Security Boulevard2d
Cybersecurity Snapshot: CISA Lists Security Features OT Products Should Have and Publishes AI Collaboration Playbook
Shopping for OT systems? A new CISA guide outlines OT cyber features to look for. Meanwhile, the U.S. government publishes a ...
The Hacker News4d
Google OAuth Vulnerability Exposes Millions via Failed Startup Domains
The San Francisco-based company said the issue has the potential to put millions of American users' data at risk simply by ...
Stratejm Launch First MSSP Offering in Canada Featuring Nozomi Networks Vantage Cloud Platform for Unified Security Monitoring and Risk Management
Nozomi Networks, a leader in operational technology (OT) and Internet of Things (IoT) cybersecurity, and Stratejm, a Bell ...
SecurityWeek6d
Infostealer Masquerades as PoC Code Targeting Recent LDAP Vulnerability
A fake proof-of-concept (PoC) exploit for a recent LDAP vulnerability distributes information stealer malware.