Security

Security | Jan 09, 2025

Ivanti zero day exploited in the wild - attacks started mid-December

Previously unseen malware being deployed, and UK's NCSC is "investigating cases of active exploitation affecting UK networks"

Opinion | Jan 09, 2025

What might AI agents and grandpa soon have in common? Falling for phishing scams

AI agents phishing teleport ev kontsevoy the stack

Conceptually, AI agents present an awkward problem for the identity management market if they do reach mass-market appeal, warns Teleport's Ev Kontsevoy.

cybersecurity | Jan 08, 2025

Troubled Sellafield spends £2.6m renewing its Darktrace licences

Two years of “maintenance and support”, and 10 days of professional services annually on top...

Security | Jan 07, 2025

KEV turns up late to the party, carrying a bottle of 2020 Oracle

CVE-2020-2883: You patched that when you first heard about it, right? Ditto these Mitel Colab bugs...

Security | Jan 07, 2025

Treasury only federal agency hit in recent breach, as BeyondTrust says "forensic investigation" nearly done

"We are working aggressively to safeguard against any further impacts..."

Open Source | Jan 06, 2025

Private equity-backed Veracode snaps up malicious software package sniffer Phylum

Its security toolset will be integrated into Veracode’s software composition analysis product and be GA this year

Leadership | Jan 04, 2025

Tributes pour in after death of Tenable’s "trailblazing" Amit Yoran

"A guiding force who profoundly impacted our industry"

GCHQ | Jan 02, 2025

GCHQ is hiring teenage hackers to take on China and others: At £25,856

"We should kick you out of Five Eyes for that sh*t"

Security | Dec 31, 2024

US Treasury breached after BeyondTrust API key leaked

CVSS 9.8 pre-auth RCE vulnerability also identified in post-incident investigation...

document.currentScript.parentNode.innerHTML = (parseInt(document.currentScript.closest('.iteration-container').dataset.length)).toString();