News

Sweet 16: Sophos named a Leader (again) in the 2025 Gartner® Magic Quadrant™ for Endpoint Protection Platforms

Bys s July 15, 2025

For the 16th consecutive report, Sophos has been recognized by Gartner as a Leader in the Endpoint Protection Platforms (EPP) category.

News

CISO’s Guide To Web Privacy Validation And Why It’s Important
Bys s May 26, 2025

Are your web privacy controls protecting your users, or just a box-ticking exercise? This CISO’s guide provides a practical roadmap for continuous web privacy validation that’s aligned with real-world practices. – Download the full guide here. Web Privacy: From Legal Requirement to Business Essential As regulators ramp up enforcement and users grow more privacy-aware, CISOs…

Read More CISO’s Guide To Web Privacy Validation And Why It’s Important
News

CISA Warns of Active Exploitation in Trimble Cityworks Vulnerability Leading to IIS RCE
Bys s February 7, 2025

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has warned that a security flaw impacting Trimble Cityworks GIS-centric asset management software has come under active exploitation in the wild. The vulnerability in question is CVE-2025-0994 (CVSS v4 score: 8.6), a deserialization of untrusted data bug that could permit an attacker to conduct remote code execution….

Read More CISA Warns of Active Exploitation in Trimble Cityworks Vulnerability Leading to IIS RCE
News

Two Distinct Botnets Exploit Wazuh Server Vulnerability to Launch Mirai-Based Attacks
Bys s June 9, 2025

A now-patched critical security flaw in the Wazur Server is being exploited by threat actors to drop two different Mirai botnet variants and use them to conduct distributed denial-of-service (DDoS) attacks. Akamai, which first discovered the exploitation efforts in late March 2025, said the malicious campaign targets CVE-2025-24016 (CVSS score: 9.9), an unsafe deserialization vulnerability…

Read More Two Distinct Botnets Exploit Wazuh Server Vulnerability to Launch Mirai-Based Attacks
News

South Korea fines SK Telecom US$97M over data breach
Bys s August 28, 2025

A big monetary penalty was anticipated for SK Telecom after a massive data breach. Now we know how big. Muhammad Zulhusni reports: South Korea’s biggest mobile carrier has been hit with a record fine after a massive data breach exposed the personal details of nearly half the country’s people. The Personal Information Protection Commission (PIPC)……

Read More South Korea fines SK Telecom US$97M over data breach
News

Instructure Reaches Ransom Agreement with ShinyHunters to Stop 3.65TB Canvas Leak
Bys s May 12, 2026

American educational technology company Instructure, the parent company of Canvas, said it reached an “agreement” with a decentralized cybercrime extortion group after it breached its network and threatened to leak stolen information from thousands of schools and universities. In an update shared on Monday, the Utah-based firm said it “reached an agreement with the unauthorized…

Read More Instructure Reaches Ransom Agreement with ShinyHunters to Stop 3.65TB Canvas Leak
News

Progress Patches Critical MOVEit Automation Bug Enabling Authentication Bypass
Bys s May 4, 2026

Progress Software has released updates to address two security flaws in MOVEit Automation, including a critical bug that could result in an authentication bypass. MOVEit Automation (formerly Central) is a secure, server-based managed file transfer (MFT) solution used to schedule and automate file movement workflows in enterprise environments without requiring any custom scripts. The

Read More Progress Patches Critical MOVEit Automation Bug Enabling Authentication Bypass

Similar Posts