Recent Security News
-
Discover 2023’s Cloud Security Strategies in Our Upcoming Webinar – Secure Your Spot
November 17, 2023 at 06:00AM The Hacker News is hosting an exclusive webinar titled ‘Navigating the Cloud Attack Landscape: 2023 Trends, Techniques, and Tactics.’ Led by Jose Hernandez from Lacework Labs, the session will cover Kubernetes security breaches, the Zenbleed vulnerability, cloud supply chain vulnerabilities, and the CloudWizard APT. The webinar aims to provide actionable…
-
27 Malicious PyPI Packages with Thousands of Downloads Found Targeting IT Experts
November 17, 2023 at 06:00AM An unidentified threat actor has been uploading malware-laden fake Python libraries to the PyPI repository for the past six months. Disguised as legitimate packages, these 27 libraries have attracted thousands of downloads from various countries. The attacker used steganography to hide malicious payloads within innocent-looking image files. The packages included…
-
Cybersecurity Investment Involves More Than Just Technology
November 17, 2023 at 03:18AM Organizations prioritize “high value for money” when allocating cybersecurity budgets, focusing on cybersecurity technologies, threat intelligence, risk assessment, cyber-insurance, and third-party risk management. While fewer organizations see technology as good value for money compared to the previous year, there is an awareness that technology investments require investment in governance and…
-
CISA Adds Three Security Flaws with Active Exploitation to KEV Catalog
November 17, 2023 at 01:06AM The U.S. CISA has added three security flaws to its Known Exploited Vulnerabilities catalog based on evidence of active exploitation. The vulnerabilities include a Microsoft Windows security bypass, a Sophos command injection, and an unspecified Oracle vulnerability. A critical command injection bug has also been disclosed in FortiSIEM report server.…