Category Archives: week in review

Here’s an overview of some of last week’s most interesting news, articles and interviews: Microsoft patches Windows LSA spoofing zero-day under active attack (CVE-2022-26925) May 2022 Patch Tuesday is here, and Microsoft has marked it by releasing fixe… Continue reading Week in review: F5 BIG-IP RCE exploitation, URL spoofing flaws in Zoom, Google Docs→

Here’s an overview of some of last week’s most interesting news, articles and interviews: May 2022 Patch Tuesday forecast: Look beyond just application and OS updates April Patch Tuesday provided an extensive set of operating system and application upd… Continue reading Week in review: F5 BIG-IP flaw, critical bugs in Aruba and Avaya network switches, Patch Tuesday forecast→

Here’s an overview of some of last week’s most interesting news, articles and interviews: Meteoric attack deploys Quantum ransomware in mere hours A group wielding the Quantum Locker ransomware is hitting targets in a blitzkrieg-like manner, going from… Continue reading Week in review: Quantum Locker ransomware, most exploited vulnerabilities in 2021→

Here’s an overview of some of last week’s most interesting news, articles and interviews: The changing role of the CCO: Champion of innovation and business continuity In this interview with Help Net Security, Simon Winchester, VP Worldwide Advanced Tec… Continue reading Week in review: Outdated open source, the role of the lawyer in cybersecurity→

Here’s an overview of some of last week’s most interesting news, articles and interviews: Microsoft fixes actively exploited zero-day reported by the NSA (CVE-2022-24521) On this April 2022 Patch Tuesday, Microsoft has released patches for 128 CVE-numb… Continue reading Week in review: Attackers exploiting VMware RCE, Microsoft fixes actively exploited zero-day→

Here’s an overview of some of last week’s most interesting news, articles and interviews: April 2022 Patch Tuesday forecast: Spring is in the air (and vulnerable) March Patch Tuesday releases followed in the footsteps of February with low numbers of CV… Continue reading Week in review: Disrupted Cyclops Blink botnet, public software apps at risk, Patch Tuesday forecast→

Here’s an overview of some of last week’s most interesting news, articles and interviews: Spring4Shell: No need to panic, but mitigations are advised Security teams around the world got another shock on Thursday when news of disclosure of a PoC for an … Continue reading Week in review: Spring4Shell vulnerability, attackers exploiting patched RCE in Sophos Firewall→

Here’s an overview of some of last week’s most interesting news, articles and interviews: Lapsus$ gang says it has breached Okta and Microsoft After breaching NVIDIA and Samsung and stealing and leaking those companies’ propertary data, the Lapsus$ cyb… Continue reading Week in review: Lapsus$ breaches Okta and Microsoft, Red Team 101, cybersecurity during M&As→

Here’s an overview of some of last week’s most interesting news, articles and interviews: (IN)SECURE Magazine issue 71 released (IN)SECURE Magazine is a free digital security publication discussing some of the hottest information security topics. Issue… Continue reading Week in review: The secret to app security, new issue of (IN)SECURE Magazine→

Here’s an overview of some of last week’s most interesting news, articles and interviews: Mozilla fixes Firefox zero-days exploited in the wild (CVE-2022-26485, CVE-2022-26486) Mozilla has released an out-of-band security update for Firefox, Firefox Fo… Continue reading Week in review: Linux bug gives root access to attackers, UPS devices’ vulns, IoT security for OEMs→