Security vulnerabilities stories - Page 9

ForAllSecure reveals new AI-powered tool, Mayhem, a dynamic software bill of materials tool that proactively battles exploitable application vulnerabilities.

Qualys unveils CyberSecurity Asset Management 3.0, enhancing its External Attack Surface Management solution, reducing false positives by 60% and uncovering 34% more assets in an initiative to tackle hidden cyber risk.

NetSPI unveils a unified security platform featuring AI and automation to help businesses tackle exposure risk and security vulnerabilities proactively amid rising ransomware threats.

Businesses rethink traditional cybersecurity practices, moving towards platform security amid findings suggesting additional benefits such as cost efficiency and improved attack response. Experts advise due diligence.

Sysdig unveils AI Workload Security to provide real-time cloud risk assessment, boosting visibility in AI infrastructures for swift response to threats and aiding regulatory compliance.

Sevco Security further evolves asset protection by prioritising, automating and validating exposure issues resolution with its upgraded platform, aiding cyber risk management for businesses.

Backslash Security reveals security oversights tied to AI-generated code in their recent GPT-4 developer simulation exercise, shedding light on unexpected vulnerabilities introduced by third-party open-source software.

Cloud-native access control solutions provider, Portnox, is launching a private bug-bounty scheme in collaboration with Bugcrowd, incentivising white-hat hackers to identify security vulnerabilities for financial rewards.

Open source flaws threaten to destabilise the development of new web innovations, such as Web 3.0 and the metaverse, according to a survey by global content management system provider, Forrit.

Beyond the CVE addresses how neglecting device misconfigurations can exacerbate vulnerabilities and risk breaches, demanding constant scrutiny and remediation.

Despite progress in perimeter security, the focus has shifted to private cloud networks, where insider threats prove costly.

BeyondTrust's 2024 Microsoft Vulnerabilities Report shows Elevation of Privilege (EoP) dominating the vulnerability class for a fourth year.

Cyber security firm, Cado Security, uncovers revelations about a Linux variant of Cerber ransomware exploiting vulnerabilities in Confluence servers using the CVE-2023-22518 exploit.

FICO's study reveals prolonged fears of identity theft among Indonesians, as 36% remain anxious, heightening vulnerabilities to financial loss and credit damage amid growing risks from real-time payments.

BackBox enhances network vulnerability management with an update to its Network Vulnerability Manager, allowing organisations to mark mitigated Common Vulnerabilities and Exposures, thus refining their risk scores and optimising remediation efforts.

Cybersecurity firm GitGuardian has introduced a Software Composition Analysis module, designed to enhance the health of organisations' codebases by automating detection and remediation of vulnerabilities in software dependencies.

LG Magna e-Powertrain achieves global certification for its Cyber Security Management System, cementing compliance with impending UNECE WP.29 car cybersecurity regulations.

LG Magna secures Cyber Security Management System certification ahead of new global regulations due July 2024.

Ensign InfoSecurity reveals a zero-day vulnerability in D-Link DIR-822 routers, putting users at risk of cyber attacks including data theft.

Kaspersky study unveils that between 2021-2023, access control and data protection flaws were found in numerous corporate web applications.