资讯

CSO Online3 天
Samlify bug lets attackers bypass single sign-on
Samlify is a library designed to simplify the implementation of SAML 2.0 for Single Sign-On ( SSO) and Single Log-Out (SLO) ...
CSO Online2 天
Critical infrastructure under attack: Flaws becoming weapon of choice
While phishing and stolen credentials remain frequent points of entry, overexposure and poor patch management of critical ...
CSO Online2 天
Beijing may have breached US government systems before Cityworks plugged a critical flaw
Talos' research revealed that Chinese hackers are actively exploiting the flaw to execute code and attempt persistence on ...
CSO Online3 天
Top 12 US cities for cybersecurity job and salary growth
These dozen cities stand out as the most promising destinations for cybersecurity professionals due to their strong job ...
CSO Online2 天
Over 91% of companies sacrifice hybrid cloud security in the AI adoption rush
New data shows that a surge in AI and hybrid cloud architectures is creating dangerous gaps, and security teams can’t keep up ...
CSO Online4 天
GitHub package limit put law firm in security bind
A cautionary tale of how a developer tool limit case could derail cybersecurity protections if not for quick thinking, public ...
CSO Online3 天
BadSuccessor: Unpatched Microsoft Active Directory attack enables domain takeover
Unprivileged users with permission to create objects inside an Active Directory organizational unit can abuse the new ...
CSO Online5 天
Skitnet malware: The new ransomware favorite
The modular malware is tailor-made for ransomware as it features dedicated plugins for theft, encryption, and persistence.
CSO Online2 天
Russian APT28 compromised Western logistics and IT firms to track aid to Ukraine
The Russian GRU-linked cyberespionage group APT28 has been targeting government agencies and companies from Western countries ...
CSO Online3 天
Feds and Microsoft crush Lumma Stealer that stole millions of passwords
Lumma Stealer operation hit 400,000 computers worldwide before coordinated takedown shut down Russian cybercrime kingpin.
CSO Online4 天
Poor DNS hygiene is leading to domain hijacking
Threat actors continue to find ways of hijacking domains thanks to poor DNS record-keeping and misconfigurations by ...
CSO Online4 天
Threat intelligence platform buyer’s guide: Top vendors, selection advice
Threat intelligence platforms have evolved and became essential security defensive tools. Here is what you need to know ...