Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

On paper, applications are created to be useful tools that solve specific business needs. Think of an application that tracks all ongoing projects for a product manager, an automation that triggers emails to prospective customers when they fill out a marketing form, or a flow that sends aggregated payment information to a finance manager. While all these applications are fairly straightforward, and seemingly used for singular cases, they are anything but.

Adobe ColdFusion, a popular web development platform, has been targeted by malicious actors exploiting the recently disclosed vulnerabilities, including severe CVE-2023-29300. The exploit has been observed in the wild, posing a significant risk to organizations and individuals relying on the software. Here is an in-depth analysis of these vulnerabilities, including their potential impacts and vital protective measures to protect against these attacks.

The recent discovery of a critical vulnerability in the MOVEit file transfer software is the latest driver in a series of high-profile software supply chain incidents. On May 31st 2023, Progress – the developer of MOVEit – published an advisory alerting the community to a critical vulnerability in its MOVEit Transfer product. The vulnerability, now tracked as CVE-2023-34362, allows an attacker to gain access to MOVEit’s database to steal and/or alter the contents.

DeepScan is an innovative product that uses Artificial Intelligence (AI) and Machine Learning (ML) to recognize and extract data from physical documents like images or PDFs. It’s been a game-changer in the field of invoice processing.

In the current digital age, healthcare providers are handling increasing volumes of data, emphasizing the urgent need for effective and accurate data management tools. IDcentral’s DeepScan, an AI-powered Document Extraction & Verification API, steps into this crucial role, revolutionizing the way the healthcare industry handles data extraction and verification.

Taylor Swift’s Eras tour has literally been the hottest ticket in music over the past few months, with millions of fans scrambling for their spot in arenas and stadiums around the world. But many “Swifties” have been left heartbroken as the demand far outstrips the number of tickets available. To make the pill even more bitter to swallow, there are plenty of tickets available to buy for the sold-out shows – but at many times their face value, on secondary markets.

Cisco Talos discovered a troubling revelation. Threat actors have seized upon a cunning Windows policy loophole, exploiting it to their advantage. This loophole allows them to sign and load cross-signed kernel mode drivers with signature timestamps. These malicious actors have cunningly embraced open-source tools’ power, manipulating kernel mode drivers’ signing date. They aim to introduce a horde of unverified and malevolent drivers with expired certificates.

An X.509 certificate holds immense significance in digital security, functioning as a digital certificate conforming to the universally accepted ITU X.509 standard. This standard defines the structure and format of public critical infrastructure certificates. X.509 certificates play a vital role in managing identity and ensuring security. The strength of X.509 certificates lies in their underlying architecture, which utilizes a key pair composed of a public key and a private key.

Today we’re excited to announce Cloudflare’s partnership with Jamf to extend Cloudflare’s Zero Trust Solutions to Jamf customers. This unique offering will enable Jamf customers to easily implement network Data Loss Prevention (DLP), Remote Browser Isolation (RBI), and SaaS Tenancy Controls from Cloudflare to prevent sensitive data loss from their Apple devices.

The recent Trustwave SpiderLabs report, Cybersecurity in the Healthcare Industry: Actionable Intelligence for an Active Threat Landscape, offers a detailed look at the typical attack flow used in a variety of cyberattacks. The attack flow discussed in the report focused on what a healthcare organization might face, but for the most part, attack flows stay the same regardless of the vertical being attacked.