7 Mobile Browsers Vulnerable to Address-Bar Spoofing Flaws allow attackers to manipulate URLs users see on their mobile devices, Rapid7 says
Botnet Infects Hundreds of Thousands of Websites KashmirBlack has been targeting popular content management systems, such as WordPress, Joomla, and Drupal, and using Dropbox and GitHub for communication to hide its presence.
Need for 'Guardrails' in Cloud-Native Applications Intensifies With more organizations shifting to cloud services in the pandemic, experts say the traditionally manual process of securing them will be replaced by automated tools in 2021 and beyond.
Credential-Stuffing Attacks Plague Loyalty Programs But that's not the only type of web attack cybercriminals have been profiting from.
To Err Is Human: Misconfigurations & Employee Neglect Are a Fact of Life The cyber kill chain is only as strong as its weakest link, so organizations should reinforce that link with a properly equipped dedicated security team.
Implementing Proactive Cyber Controls in OT: Myths vs. Reality Debunking the myths surrounding the implementation of proactive cyber controls in operational technology.
WordPress Plug-in Updated in Rare Forced Action The Logonizer login security plug-in was automatically updated to patch a SQL injection vulnerability.
McAfee Raises $740M in Second IPO The security software giant and its investors sold 37 million shares priced at $20 each, putting McAfee's value around $8.6 billion.
