Content Paint
Search
Sign in
Membership

Security

Patch Tuesday  | Jan 10, 2024
Patch Tuesday brings lots of chaff, a little buggy wheat too. Some CVE highlights to review.
Patch Tuesday brings lots of chaff, a little buggy wheat too. Some CVE highlights to review.

One vulnerability bears a striking resemblance to an 0day that was actively exploited in the wild in November 2023.

X  | Jan 10, 2024
SEC’s X account hacked: Unlike Mandiant, no MFA was in place
SEC’s X account hacked: Unlike Mandiant, no MFA was in place

"The SEC has not approved the listing and trading of spot bitcoin exchange-traded products"

 |  ransomware  | Jan 09, 2024
Disclosed ransomware attacks hit two-per day in December: The real figure is ~500% higher
Disclosed ransomware attacks hit two-per day in December: The real figure is ~500% higher

"Simulate and exercise breach readiness, especially abilities to reduce blast radius of a cyber attack. Involve top leadership, the board, and customers in separate cyber war games, as often as practical..."

Security  | Jan 08, 2024
Software licensing bug percolates pre-auth RCE risk downstream to PLC-land
Software licensing bug percolates pre-auth RCE risk downstream to PLC-land

Another arguably more potent example and one actively exploited in the wild is CVE-2023-46604 – a CVSS 10 RCE vulnerability in Apache ActiveMQ; an open source message broker written in Java.

Security  | Jan 05, 2024
The Big Interview: Rubrik CEO Bipul Sinha on going from no running water, to running a $500m business
The Big Interview: Rubrik CEO Bipul Sinha on going from no running water, to running a $500m business

On Magic Quadrants, deal size, changing approaches to cyber-resilience and learning from his father.

 |  Security  | Jan 05, 2024
AWS rattles customers with unclear warning over mystery "recent CVE"
AWS rattles customers with unclear warning over mystery "recent CVE"

Warns users it will terminate affected tasks, but leaves a lacuna... (Fear not, we're here with details)

Security  | Jan 04, 2024
Kaspersky burns 11,000-line “NSA” exploit: Calls 14-step iPhone attack “definitely the most sophisticated attack chain we have ever seen”
Kaspersky burns 11,000-line “NSA” exploit: Calls 14-step iPhone attack “definitely the most sophisticated attack chain we have ever seen”

Apex Predators aside and in other news, a major telco just got hacked because it didn't have MFA set up on a critical account...

 |  Security  | Jan 03, 2024
Utilities splash cash to get OT security in order as new "e-CAF" regime shakes up sector
Utilities splash cash to get OT security in order as new "e-CAF" regime shakes up sector

Another £82 million in Operational Technology and cybersecurity contracts hits the market as water, gas companies overhaul legacy systems amid pressure...

Security  | Jan 03, 2024
Hallucinated vulnerability disclosure for Curl generates disgust
Hallucinated vulnerability disclosure for Curl generates disgust

But Bug Bounty platform HackerOne isn't too worried that LLM-generated bug reports will become a deluge...

Interviews, insight, intelligence, and exclusive events for digital leaders.

© 2026 The Stack
©  2026 The Stack

Search the site
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Great! You've successfully signed up.
Great! You've successfully signed up.
Welcome back! You've successfully signed in.
Success! You now have access to additional content.