Security

Security | Jun 01, 2022

Security teams still face finger-pointing. Blame culture must end

This issue is still rife and causing burnout, says one CISO

Security | May 31, 2022

Microsoft zero day "Follina" demystified: What you need to know

Microsoft Support Diagnostic Tool being unhelpful...

Security | May 25, 2022

Exploit for ANOTHER critical bug in VMware Workspace ONE expected imminently

Weeks after earlier RCE was widely exploited by APTs

Featured | May 24, 2022

Home Office eying privatisation of bulk surveillance apparatus

"One or more providers" to handle data harvesting units' needs...

Security | May 20, 2022

Department of Justice: We won't sue "good faith" hackers, promise, maybe

Don't go wild on Shodan just yet though...

Security | May 19, 2022

NASA taps Booz Allen for $622m IT security contract after failures

First task: No more random Raspberry Pis on the network.

Security | May 18, 2022

Microsoft warns over novel SQL Server attacks

Microsoft warned that a malicious campaign targeting SQL Servers is using an "uncommon living-off-the-land binary" that to achieve persistence on compromised systems -- saying that defenders need to pay increased attention to abuse of the sqlps.exe which ships with SQL Server as standard. Without naming the attackers

Security | May 17, 2022

Zyxel, VMware, F5 vulnerabilities under attack: Updated CISA database

Don't put that stuff on the public internet, kids.

Security | May 16, 2022

Automated patching, risk-based approach critical to resilience: First, face the "Bleedin' obvious"

Former NCSC Director of Incident Management John Noble, opening the Qualys Security Conference (QSC) in London, warned that much of what he would say would be “to use a British expression, bleedin’ obvious”. He was right. And that's a problem. “My colleagues in the NCSC [say] patching remains

document.currentScript.parentNode.innerHTML = (parseInt(document.currentScript.closest('.iteration-container').dataset.length)).toString();