Collaborate Disseminate
Social media giant Meta has been fined an additional 5.5 million euros ($5.9 million) for violating EU data protection regulations with its instant messaging platform WhatsApp, Ireland’s regulator announced Thursday.
read more Continue reading Meta Slapped With 5.5 Million Euro Fine for EU Data Breach
B2B payment security provider NsKnox this week announced that it has raised $17 million in a new funding round that brings the total raised by the company to $35.6 million.
read more Continue reading B2B Payment Security Firm NsKnox Raises $17 Million
There is a problem with API security – it isn’t working very well, and it’s largely down to credential leakage. Most security professionals are confident in their own API credential management; but at the same time, most of the same professionals admit… Continue reading Credential Leakage Fueling Rise in API Breaches
Cisco on Wednesday announced patches for a high-severity SQL injection vulnerability in Unified Communications Manager (CM) and Unified Communications Manager Session Management Edition (CM SME).
read more Continue reading Cisco Patches High-Severity SQL Injection Vulnerability in Unified CM
The owner of China-based cryptocurrency exchange Bitzlato was arrested in Miami on Wednesday, along with five associates in Europe, during an international operation against “darknet” markets.
read more Continue reading International Arrests Over ‘Criminal’ Crypto Exchange
A cross-site request forgery (CSRF) vulnerability impacting the source control management (SCM) service Kudu could be exploited to achieve remote code execution (RCE) in multiple Azure services, cloud infrastructure security firm Ermetic has discovered… Continue reading CSRF Vulnerability in Kudu SCM Allowed Code Execution in Azure Services
Sophos has confirmed reports that it’s laying off employees. The company joins several other major cybersecurity companies that have announced cutting staff over the past year.
read more Continue reading Sophos Joins List of Cybersecurity Companies Cutting Staff
Vendors and agencies are actively bypassing the security patch that Adobe released in February 2022 to address CVE-2022-24086, a critical mail template vulnerability in Adobe Commerce and Magento stores, ecommerce security firm Sansec warns.
read more Continue reading Vendors Actively Bypass Security Patch for Year-Old Magento Vulnerability
The US government’s cybersecurity agency CISA is giving federal agencies an early February deadline to patch a critical — and already exploited — security vulnerability in the widely used CentOS Control Web Panel utility.
read more Continue reading Exploited Control Web Panel Flaw Added to CISA ‘Must-Patch’ List
A source code security audit has led to the discovery of several vulnerabilities in Git, the widely used distributed version control system.
The results of the security audit, sponsored by OSTIF and conducted by X41 and GitLab, were made public this we… Continue reading Critical Git Vulnerabilities Discovered in Source Code Security Audit