Recent Security News
-
Zero Networks Raises $20M in Series B to Prevent Attackers from Spreading in Corporate Networks
December 18, 2023 at 05:29PM Israeli cybersecurity startup Zero Networks raised $20M in Series B funding led by USVP, with participation from Dmitri Alperovitch and existing investors. The funds will support recruiting and hypergrowth. Zero Networks offers automated zero-trust identity and network security solutions to prevent lateral movement within the organizational network by attackers. The…
-
Millions of Microsoft Accounts Power Lattice of Automated Cyberattacks
December 18, 2023 at 05:14PM Microsoft’s Digital Crimes Unit disrupted the Storm-1152 cybercrime-as-a-service provider that fraudulently created and sold over 750 million Microsoft accounts, generating millions in illicit profits. The group utilized fake profiles, automated criminal activities, and bypassed security measures like CAPTCHAs. Microsoft identified the main operators and shut down Storm-1152’s US-based infrastructure. The…
-
Microsoft discovers critical RCE flaw in Perforce Helix Core Server
December 18, 2023 at 03:52PM Four vulnerabilities, including a critical one, were found in the Perforce Helix Core Server, a widely used source code management platform. Discovered by Microsoft analysts, flaws included denial of service issues and remote code execution by unauthenticated attackers. Users are urged to upgrade to version 2023.1/2513900 to mitigate risk and…
-
Will Putting a Dollar Value on Vulnerabilities Help Prioritize Them?
December 18, 2023 at 03:42PM Zoom developed the Vulnerability Impact Scoring System (VISS) as a more objective approach to assess the severity of vulnerabilities found during bug bounty programs. This system, providing a transparent and defensible way to calculate potential rewards for vulnerabilities, aims to prioritize critical and high-severity issues. VISS received positive feedback from…