Content Paint
Search
Sign in
Membership

Security

Fortinet  | Jun 12, 2023
MFA is no protection against this critical new Fortinet vulnerability, CVE-2023-27997
MFA is no protection against this critical new Fortinet vulnerability, CVE-2023-27997

"It is a pre-auth RCE [and] has been proven to be exploitable in a consistent manner; we found it during a Red Team engagement and have exploited it remotely..."

data breaches  | Jun 05, 2023
BBC, BA suffer data breaches in wake of MOVEit attacks
BBC, BA suffer data breaches in wake of MOVEit attacks

The Stack is seeing exposed instances associated with scores of high profile blue chips

News  | Jun 05, 2023
UPDATED: File transfer software under active attack. Banks, gov't hit as CVE, new IOCs released
UPDATED: File transfer software under active attack. Banks, gov't hit as CVE, new IOCs released

Admins should urgently modify firewall rules to deny HTTP and HTTPs traffic to MOVEit Transfer on ports 80 and 443. (Also, can we start fuzzing for SQL Injection properly, please?)

Security  | Jun 04, 2023
Kaspersky iPhones hacked using zero click 0day
kaspersky iphones hacked iphone zero day

Apple: "We have never worked with any government to insert a backdoor into any Apple product and never will..."

Security  | Jun 01, 2023
Dell's Chief Security Officer on physical security, frameworks, burnout and incident response

John Scimone had one hell of an introducton to life as a CISO...

Security  | Jun 01, 2023
Barracuda tells customers to dump infected email security appliances after breach
Barracuda tells customers to dump infected email security appliances after breach

Customers were first hit in October 2022. End user telemetry flagged something remiss this month... IOCs and Yara rules now shared.

cybersecurity  | May 31, 2023
Millions of Gigabyte motherboards appear to be backdoored
Millions of Gigabyte motherboards appear to be backdoored

“I know how I would do this intentionally and it would look exactly like this. You literally are downloading something from the internet and running it with the highest privileges on the system. It's easy to say 'oops! I didn't know..."

Security  | May 24, 2023
Chinese state-backed “Volt Typhoon” hackers breached US critical infrastructure
Chinese state-backed hackers Typhoon Volt targeted US critical infrastructure

The group is intent on developing capabilities and access that “could disrupt critical communications infrastructure between the United States and Asia region during future crises.” Threat vector Fortinet has questions to answer ...

Security  | May 23, 2023
235.7 billion downloads; 2 staff on call. PyPI briefly shuts up shop amid burnout, malice
PyPI malicious project uploads force shutdown

An uptick in malicious new projects being created on the Python Package Index (PyPI) repository forced it to shut down new user registrations over the weekend in a worrying sign for the open source project. PyPI is a repository of open-source Python packages supplied by the worldwide community of Python

Interviews, insight, intelligence, and exclusive events for digital leaders.

© 2026 The Stack
©  2026 The Stack

Search the site
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Great! You've successfully signed up.
Great! You've successfully signed up.
Welcome back! You've successfully signed in.
Success! You now have access to additional content.