SEARCH
New Backdoor Used By Iranian State-Sponsored Group
The backdoor is being used for intelligence gathering campaigns against U.S. organizations in the government, communications equipment, oil and gas and satellite sectors.
Attacks Target Recent Apache OFBiz Bug
CISA warns that the CVE-2024-38856 Apache OFBiz flaw disclosed earlier this month is being actively exploited.
U.S. Government Warns of Iran-Based UNC757 Attacks
CISA and the FBI are warning of activity by the Iran-based UNC757 group, which includes the targeting of known Check Point and Palo Alto Networks vulnerabilities.
Chinese APT Exploits Versa Networks Zero-Day Flaw
The vulnerability impacts versions of Versa Director prior to 22.1.4, and Versa Networks recommends that impacted users update to the fixed version as soon as possible.
Decipher Podcast: Reddit’s Matt Johansen on Identity Attacks, Enterprise Security, and Burnout
Reddit's head of application security Matt Johansen joins Dennis Fisher to talk about the highlights of Black Hat USA, the challenges of sorting security priorities in a large enterprise, and how he's learned to take care of his mental health after many years in the security industry.