Critical Flaw Patched in Progress File Transfer Server
Progress Software has fixed a critical pre-authentication remote code execution bug in its WS_FTP Server product.
He is one of the co-founders of Threatpost and previously wrote for TechTarget and eWeek, when magazines were still a thing that existed. Dennis enjoys finding the stories behind the headlines and digging into the motivations and thinking of both defenders and attackers. His work has appeared in The Boston Globe, The Improper Bostonian, Harvard Business School’s Working Knowledge, and most of his kids’ English papers.
Progress Software has fixed a critical pre-authentication remote code execution bug in its WS_FTP Server product.
U.S. authorities warn that cooperative efforts between state-sponsored actors and cybercrime groups make life more difficult...
A new attack group named ShroudedSnooper is targeting telecom providers in Middle Eastern countries with custom tools called...
A new CISA analysis of risk and vulnerability assessments at government agencies shows that the use of valid credentials and spear phishing are still the most effective initial access vectors.
A new coalition of tech companies, including AT&T, Cisco, Verizon, and VMware, is aiming to address the challenges to global network resilience.
Atlassian has patched three nigh-risk vulnerabilities, two in its Confluence products and one in its Bamboo products.
The new U.S. Cyber Trust Mark program is meant as a seal of approval for IoT device security and could drive more secure development practices.
Adobe has released a patch for a critical bug in ColdFusion (CVE-2023-38203) and warns that a proof-of-concept analysis is available for it.