May 20, 2024 at 04:04PM A severe memory corruption vulnerability named “Linguistic Lumberjack” is found in the popular cloud logging tool Fluent Bit, impacting numerous major cloud service providers and organizations. The bug, tracked under CVE-2024-4323, enables denial of service, data leakage, and remote code execution. Maintainers have released a fix, urging prompt updates or … Read more
January 22, 2024 at 05:05PM Microsoft’s corporate systems fell victim to a cyberattack by the Russian nation-state actor behind the 2020 SolarWinds Orion software breach. The intrusion, discovered on Jan. 12, breached a small percentage of corporate email accounts, including those of senior leadership, cybersecurity, and legal teams. Microsoft pledged to enhance cybersecurity measures and … Read more
October 19, 2023 at 04:27PM Microsoft is extending Purview Audit log retention following the breach of Exchange and Microsoft 365 accounts by the Chinese hacking group Storm-0558. The affected organizations included government agencies, with the US State and Commerce Departments among them. The changes will roll out to customers with Standard licenses, providing longer retention … Read more