Time-to-Exploit: What It Means and Why It’s Going Down
The average time that it takes threat actors to exploit vulnerabilities - either prior to or after their public disclosure - is going down.
SEARCH
MOVEit Bug’s Ripple Effect Still Unfolding
The full impact of the flaw is still being mapped out, but current estimates show that 2,120 organizations have been impacted...
New Threat Group Targets Middle Eastern Telcos
A new attack group named ShroudedSnooper is targeting telecom providers in Middle Eastern countries with custom tools called...
Google Issues Fix For High-Severity Chrome Zero Day
The flaw is the second Chrome zero day fixed by Google this month.
‘Marriages of Convenience’ Between State Actors and Cybercriminals Provide Cover for Both
U.S. authorities warn that cooperative efforts between state-sponsored actors and cybercrime groups make life more difficult...
TeamCity Users Urged to Apply Fix For Critical Flaw
Software development company JetBrains is urging customers to apply updates that fix a critical-severity authentication bypass...
Pair of Serious Flaws Patched in BIND 9
A pair of serious vulnerabilities have been fixed in the widely deployed BIND 9 DNS server.
Analyzing the Qakbot Disruption
Decipher editors Dennis Fisher and Lindsey O'Donnell-Welch discuss the FBI's disruption of the Qakbot malware operation and...
Adversaries Shift Tactics in Attacks on Citrix NetScaler Flaw
Attackers are continuing to adjust their tactics in their attacks against Citrix devices vulnerable to the CVE-2023-3519 flaw.
Dennis Has Some Questions About…2FA
Two-factor authentication is a vital part of many corporate security strategies, and is now offered by lots of consumer apps,...