Articles Tagged with ''security vulnerability''

As organizations move to the cloud, they must ensure their IT infrastructure and data are covered by robust security and privacy solutions.

An API security vulnerability discovered in a FinTech platform could have allowed administrative account takeover (ATO), according to Salt Security. 

Russian state-sponsored cyberattackers gained network access to a non-governmental organization by exploiting default multi-factor authentication (MFA) protocols and PrintNightmare, a known security vulnerability. 

Four months after the cybersecurity community mobilized to protect organizations from the Log4j vulnerability, security leaders can reflect on the lessons learned from the large-scale cyber incident.

China-backed hacker group APT41 has breached six U.S. state governments, two of which were exploited by the zero-day vulnerability Log4Shell. 

Half of all sites tested by NTT Application Security were vulnerable to at least one serious exploitable vulnerability throughout 2021.

Researchers revealed a now-patched high-severity security vulnerability in Apache Cassandra.

The Cybersecurity and Infrastructure Security Agency (CISA) has added 15 new vulnerabilities to its Known Exploited Vulnerabilities Catalog.

APT35 (aka Charming Kitten, TA453, or Phosphorus) started widespread scanning and attempted to leverage Log4j flaw in publicly facing systems only four days after the vulnerability was disclosed, according to new Check Point research. 

The JFrog security research team has disclosed an issue in the H2 database console, which was issued a critical CVE — CVE-2021-42392. This issue has the same root cause as the Log4Shell vulnerability in Apache Log4j.