Latest News

Chinese APT Exploits Ivanti CVE-2025-22457 with Malware

Apr 10, 2025 By Foresiet In Foresiet

A newly disclosed vulnerability in Ivanti Connect Secure (ICS) VPN appliances has been weaponized in the wild by a Chinese nation-state threat actor, UNC5221. Tracked as CVE-2025-22457, this critical stack-based buffer overflow vulnerability allows unauthenticated remote attackers to execute arbitrary code, posing a significant risk to enterprise networks.

Read Post

Foresiet

Read more about Chinese APT Exploits Ivanti CVE-2025-22457 with Malware

Meeting NIST API Security Guidelines with Wallarm

Apr 10, 2025 By Wallarm In Wallarm

On March 25, 2025, NIST released the initial public draft of NIST SP 800-228, "Guidelines for API Protection for Cloud-Native Systems." The document provides a comprehensive framework for securing APIs in cloud-enabled environments. However, for organizations looking to align with these objectives, the tooling requirements may seem initially overwhelming. Fortunately, Wallarm helps streamline the process by integrating many of these recommendations into a single, cloud-native solution.

Read Post

Wallarm

Read more about Meeting NIST API Security Guidelines with Wallarm

UMDC Pharmacist Used Malware To Spy On Doctors

Apr 10, 2025 By Key Dutch In ImmuniWeb

Read also: Five Smokeloader botnet customers arrested, servers seized, alleged "Scattered Spider" member pleads guilty, and more.

Read Post

ImmuniWeb

Read more about UMDC Pharmacist Used Malware To Spy On Doctors

Software Supply Chain Security: A Detailed Explanation

Apr 10, 2025 By Oshrat Nir In ARMO

Software supply chain attacks cost businesses $45.8 billion globally in 2023 alone, and is projected to exceed $80.6 billion by 2026. According to Gartner’s projection, 45% of organizations will experience software supply chain attacks this year. These emphasize the importance of software supply chain security and the need for every organisation to prioritize it.

Read Post

ARMO

Read more about Software Supply Chain Security: A Detailed Explanation

AIOps Delivers Best Practice Security and Performance to the Network and Business

Apr 9, 2025 By Stephen Amstutz, Director of Innovation In Xalient

Maintaining robust network security in today's threat climate is a challenge. Adhering to best practices is just as difficult. However, both are necessary to ensure that organizations can continue running efficiently and securely with minimal interruption or downtime to the network.

Read Post

Xalient

Read more about AIOps Delivers Best Practice Security and Performance to the Network and Business

Gcore Super Transit Brings Advanced DDoS Protection and Acceleration for Superior Enterprise Security and Speed

Apr 9, 2025 By Gcore

Gcore, the global edge AI, cloud, network, and security solutions provider, has launched Super Transit, a cutting-edge DDoS protection and acceleration feature, designed to safeguard enterprise infrastructure while delivering lightning-fast connectivity.

Read Post

Read more about Gcore Super Transit Brings Advanced DDoS Protection and Acceleration for Superior Enterprise Security and Speed

Seal Security Launches Seal Base Images to Eliminate Container Vulnerabilities

Apr 9, 2025 By Seal Security In Seal Security

New release provides future-proof, vulnerability-free base images for containers.

Read Post

Seal Security

Read more about Seal Security Launches Seal Base Images to Eliminate Container Vulnerabilities

What is iOS Supervised Mode? What are its Benefits?

Apr 9, 2025 By miniOrange In miniOrange

Let’s explore what iOS Supervised Mode is and how it enhances security and control over company-owned iPhones and iPads. The blog will highlight the key features, differences from unsupervised mode, and step-by-step guidance on enabling supervision using miniOrange MDM solutions.

Read Post

miniOrange

Read more about What is iOS Supervised Mode? What are its Benefits?

CTI Roundup: QR Code Phishing, Babuk Locker 2.0, and Qilin

Apr 9, 2025 By Tanium In Tanium

QR code phishing accelerates as tactics evolve, LockBit 3.0 rebrands as Babuk Locker 2.0 ransomware, and Qilin affiliates target the downstream customers of an MSP.

Read Post

Tanium

Read more about CTI Roundup: QR Code Phishing, Babuk Locker 2.0, and Qilin

CrowdStrike Wins Google Cloud Security Partner of the Year Award, Advances Cloud Security for Joint Customers

Apr 9, 2025 By Cody Queen In CrowdStrike

CrowdStrike has won the 2025 Google Cloud Security Partner of the Year Award for Workload Security, recognizing our leadership in securing cloud environments at scale. Announced at Google Cloud Next 2025, the award highlights our commitment to joint innovation and delivering best-in-class protection for Google Cloud customers. As part of this growing partnership, we also introduced new CrowdStrike Falcon Cloud Security enhancements purpose-built for Google Cloud environments.

Read Post

CrowdStrike

Read more about CrowdStrike Wins Google Cloud Security Partner of the Year Award, Advances Cloud Security for Joint Customers

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Chinese APT Exploits Ivanti CVE-2025-22457 with Malware

Meeting NIST API Security Guidelines with Wallarm

UMDC Pharmacist Used Malware To Spy On Doctors

Software Supply Chain Security: A Detailed Explanation

AIOps Delivers Best Practice Security and Performance to the Network and Business

Gcore Super Transit Brings Advanced DDoS Protection and Acceleration for Superior Enterprise Security and Speed

Seal Security Launches Seal Base Images to Eliminate Container Vulnerabilities

What is iOS Supervised Mode? What are its Benefits?

CTI Roundup: QR Code Phishing, Babuk Locker 2.0, and Qilin

CrowdStrike Wins Google Cloud Security Partner of the Year Award, Advances Cloud Security for Joint Customers

Monthly Archive

Follow Us