Recent Security News

  • Unpatched Vulnerabilities Expose Yifan Industrial Routers to Attacks

    October 12, 2023 at 07:39AM Chinese company Yifan’s industrial routers are vulnerable to critical security flaws, according to Cisco’s Talos. Yifan was given 90 days to release patches, but none have been issued. The flaws can allow attackers to execute arbitrary commands, change admin credentials, and access devices with admin privileges. All vulnerabilities can be…

    Read More

  • CISO Pay Increases Are Slowing – a Look Behind the Figures

    October 12, 2023 at 07:39AM CISO compensation levels are growing more slowly than in previous years, according to a survey by IANS Research and Artico Search. The average CISO total compensation increase was 11%, down from 14% the previous year. Additionally, 20% of CISOs did not receive a raise, double the previous year’s figure. The…

    Read More

  • Simpson Manufacturing Takes Systems Offline Following Cyberattack

    October 12, 2023 at 07:39AM Engineering and manufacturing firm Simpson Manufacturing has suffered a cyberattack, resulting in the company taking some of its IT systems offline. The incident was discovered on October 10, and while the company is working to address the issue, it acknowledges that it will cause disruption to parts of its business…

    Read More

  • How to Guard Your Data from Exposure in ChatGPT

    October 12, 2023 at 07:28AM A new report by LayerX highlights the risks associated with data exposure in ChatGPT and similar AI applications. The report suggests that traditional file-based data protection solutions are inadequate for handling these risks and recommends the use of browser security platforms for real-time monitoring and governance. Employee usage of GenAI…

    Read More

  • Microsoft Defender Thwarts Large-Scale Akira Ransomware Attack

    October 12, 2023 at 07:28AM Microsoft Defender for Endpoint successfully stopped a large-scale remote encryption attempt by the Akira ransomware group targeting an industrial organization in June 2023. The attack involved devices not protected by Microsoft Defender and included reconnaissance and lateral movement activities. Microsoft’s automatic attack disruption feature prevented breached accounts from accessing endpoints…

    Read More