Secureworks reduce cyber risk and bolster cyber resiliency with the new dashboard, which companies can use to evaluate and strengthen their security posture.

BeyondTrust has released its 2023 Microsoft Vulnerabilities Report, finding vulnerabilities rose to 1,292 in 2022, an all-time high in the report’s 10-year history.

“Together, Claroty and ServiceNow help enterprises rapidly and comprehensively discover the assets they own, which in turn enables them to assess and quickly address asset vulnerabilities."

The reported ransomware incidents increased by 17% in the UK last year, with LockBit dominating the ransomware attack landscape, in the UK and worldwide.

Traffic logging just happens to be the use case that has endured. However, this reliance on established methods has left some vulnerabilities in network and port spoofing.

Check Point Research identified security vulnerabilities in Chess.com, which, left unpatched, can be used to cheat and solve games without playing.

Check Point analysed ChatGPT4 and released five scenarios that threat actors can exploit to streamline malicious efforts faster and more precisely.

Claroty has uncovered 13 vulnerabilities in the Akuvox E11 smart intercom system, making the camera and microphone vulnerable and compromising video and images.

Imperva threat team has uncovered recently that NFT marketplace OpenSea is affected by a vulnerability that reveals users' identities.

Technologists are struggling to manage soaring volumes of emerging cyber threats across an increasingly dynamic and fragmented IT environment.

Cyber insurance is not a silver bullet to all these woes, but it does provide a significant safety net to organisations that have already achieved a basic level of cyber resilience.

Rapid7 Vulnerability Intelligence Report finds attackers developing and deploying exploits faster, with an 87% increase in first-week exploitation since 2020.

Given that most large organisations have made significant cybersecurity investments yet have poorly resourced security teams under enormous stress, what can be done to reduce the likelihood of incidents occurring?

For companies to better meet cybersecurity standards, it's time to throw away the bad password advice and take steps to eliminate passwords once and for all.

"Vendors are embracing the need to secure cyber-physical systems by dedicating time, people, and money to not only patching software and firmware vulnerabilities, but also to product security teams."

The report looks at real-world data to understand how global companies and industries use and secure cloud and container environments.

In the past, mega vulnerabilities happened once a quarter, but this past year we've been dealing with critical vulnerabilities almost weekly in some cases.

The challenge for organisations is that even with a secure perimeter, internal systems and data can be compromised if a malicious actor gets in or another internal system has a vulnerability.

Radware has issued a threat advisory about a for-profit threat group from China known as the 8220 Gang, who has emerged in the New Year targeting public cloud environments.

Trustwave has relaunched its Advanced Continual Threat Hunting platform with a unique feature allowing its SpiderLabs threat hunting teams to carry out many more human-led threat hunts.

Claroty's research team, Team82, has examined the GE Proficy Historian, finding five exploitable vulnerabilities capable of causing damage to the system.

Between July and October, Acronis found that the proportion of phishing attacks has risen by 1.3, accounting for 76% of all attacks.

“When it comes to cybersecurity, not all vulnerabilities are created equal, and many of the ones that garner media attention actually turn out to be insignificant."

The Secureworks Counter Threat Unit (CTU) has uncovered a subgroup of Iranian Cobalt Mirage using GitHub to store and deploy malware.