Content Paint
Search
Sign in
Membership

Security

 |  Security  | Oct 19, 2023
Top 10 misconfigurations: NSA checklist for CISOs flags Active Directory Certificate Services
Top 10 misconfigurations: NSA checklist for CISOs flags Active Directory Certificate Services

"In some cases, the actor may be restricted or detected by advanced defense-in-depth and zero trust implementations as well, but this has been a rare finding in assessments thus far"

 |  Security  | Oct 19, 2023
UK nuclear firms get code red warning over cybersecurity failings
UK nuclear firms get code red warning over cybersecurity failings

Cybersecurity failures "escalated…to significantly enhanced attention"

Security  | Oct 17, 2023
CVSS 10 Cisco bug is getting exploited, has no patch
CVSS 10 Cisco bug is getting exploited, has no patch

"We have also seen devices... getting the implant successfully installed through an as of yet undetermined mechanism."

Security  | Oct 17, 2023
Security veterans team up to tackle “Cyber Poverty”
Security veterans team up to tackle “Cyber Poverty”

"Because of the interconnected nature of our supply chain, the ramifications of a single incident in these underserved less cyber mature pockets can have devastating downstream impact..."

data breaches  | Oct 13, 2023
FCA’s £11 million Equifax fine comes with a fresh cybersecurity warning
fca equifax fine

"The risk of identity theft never stops. Cyber criminals are sophisticated and innovative... firms must raise their standards."

Security  | Oct 13, 2023
A free new repository offers intel on malicious open source
Open Source Security Foundation's (OpenSSF) new Malicious Packages Repository

OpenSSF's new Malicious Packages Repository is free to use in and available in OSV format.

Open Source  | Oct 12, 2023
CRA(P): Will Europe throw the open source baby out with the bathwater?
CRA(P): Will Europe throw the open source baby out with the bathwater?

"The major concerns are that the responsibility for compliance would fall on the wrong parties..."

 |  Software  | Oct 11, 2023
Patch Tuesday is 20: Curl fix lands, Skype’s under attack and there’s a wormable pre-auth RCE in the mix
Patch Tuesday is 20: Curl fix lands, Skype’s under attack and there’s a wormable pre-auth RCE in the mix

A CVSS 9.8, pre-auth RCE that lets an attacker execute arbitrary code without user interaction is wormable on systems where Message Queuing is enabled.

Security  | Oct 10, 2023
Most of the internet exposed to HTTP/2 zero day, as hyperscalers report record DDoS attacks
Most of the internet exposed to HTTP/2 zero day, as hyperscalers report record DDoS attacks

"Any enterprise or individual that is serving an HTTP-based workload to the Internet may be at risk from this attack"

Interviews, insight, intelligence, and exclusive events for digital leaders.

© 2026 The Stack
©  2026 The Stack

Search the site
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Great! You've successfully signed up.
Great! You've successfully signed up.
Welcome back! You've successfully signed in.
Success! You now have access to additional content.