Recent Security News
-
GitHub Rotates Credentials in Response to Vulnerability
January 17, 2024 at 08:30AM GitHub rotated credentials and addressed a vulnerability impacting GitHub.com and GitHub Enterprise Server after receiving a vulnerability report. The security defect allowed access to credentials within a production container but had minimal impact. GitHub resolved the flaw and released patches for GitHub Enterprise Server, also rotating the private GitHub GPG…
-
Savvy Launches Identity-First Security Offering to Combat Toxic Combinations Driving SaaS Risk
January 17, 2024 at 07:36AM Savvy, a SaaS security platform provider, has introduced Identity-First Security to address risks stemming from identity access management permissions, user behavior, and business context. The offering aims to combat SaaS application-related security risks by providing comprehensive visibility and automated security guardrails to guide users in real time. For more details,…
-
Windows Server 2022 patch is breaking apps for some users
January 17, 2024 at 06:56AM The latest Windows Server 2022 patch, KB5034129, has caused issues with the Chrome browser and other Chromium-based browsers, as well as the Snipping Tool and Firefox. Users are experiencing problems with graphical subsystems, resulting in failures to open or blank white boxes. Some have resorted to uninstalling the update or…
-
Feds Warn of AndroxGh0st Botnet Targeting AWS, Azure, and Office 365 Credentials
January 17, 2024 at 06:39AM CISA and FBI warn of AndroxGh0st malware creating a botnet for victim identification and exploitation. Capable of infiltrating servers with known security flaws, it targets credentials for platforms like AWS and Microsoft Office 365. Features enable SMTP abuse and persistent access to compromised systems. Related tools include FBot and spike…