Content Paint
Search
Sign in
Membership

cybersecurity

Security  | Oct 31, 2023
Citrix Bleed: Two ransomware groups now exploiting bug for initial access
Citrix Bleed: Two ransomware groups now exploiting bug for initial access

Here's what you need to do to reduce the threat posed by CVE-2023-4966. But don't delay.

Security  | Oct 27, 2023
Zero day in free Roundcube webmail service exploited to target governments
Zero day in free Roundcube webmail service exploited to target governments

Despite the low sophistication of the group’s toolset, it is a threat to governments in Europe because... a significant number of internet-facing applications are not regularly updated although they are known to contain vulnerabilities.”

ransomware  | Oct 26, 2023
English-speaking ransomware group expanding ops, deploying diverse tools, threats
English-speaking ransomware group expanding ops, deploying diverse tools, threats

Both blunt and more advanced social engineering approaches used for initial access; the group also has sophisticated hands-on-keyboards capabilities and a diverse toolset.

 |  Security  | Oct 25, 2023
Okta breach looks worse as BeyondTrust, Cloudflare, 1Password report impact, flag concerns
Okta breach looks worse as BeyondTrust, Cloudflare, Password1 report impact, flag concerns

Concern at IAM vendor Okta's response mounts as BeyondTrust details concerns, Cloudflare calls for customers to press harder on "further information regarding potential impact to your organization"

Security  | Oct 23, 2023
Was this the most vanilla ransomware attack ever?
Was this the most vanilla ransomware attack ever?

"VPNs pose a threat to enterprise security. They create a path in the network perimeter and provide access to network resources after authentication..."

Security  | Oct 23, 2023
Fresh Okta breach exposes files: HAR, but no laughing matter
New Okta breach

The attackers used a "stolen credential to access Okta's support case management system"

Security  | Oct 20, 2023
Incident response exercises urged after mass Cisco device exploitation
Incident response exercises urged after mass Cisco device exploitation

Cisco says patch pending October 22 for what transpires to have been two discrete zero days...

 |  Security  | Oct 19, 2023
Top 10 misconfigurations: NSA checklist for CISOs flags Active Directory Certificate Services
Top 10 misconfigurations: NSA checklist for CISOs flags Active Directory Certificate Services

"In some cases, the actor may be restricted or detected by advanced defense-in-depth and zero trust implementations as well, but this has been a rare finding in assessments thus far"

 |  Security  | Oct 19, 2023
UK nuclear firms get code red warning over cybersecurity failings
UK nuclear firms get code red warning over cybersecurity failings

Cybersecurity failures "escalated…to significantly enhanced attention"

Interviews, insight, intelligence, and exclusive events for digital leaders.

© 2026 The Stack
©  2026 The Stack

Search the site
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Great! You've successfully signed up.
Great! You've successfully signed up.
Welcome back! You've successfully signed in.
Success! You now have access to additional content.