The rapid integration of generative AI tools within runtime environments and cloud infrastructure security is presenting both significant advancements and notable risks within software supply chains. Companies such as Lightrun and ZEST Security are leveraging these advanced technologies to enhance
August 1, 2024A new critical vulnerability, CVE-2024-5806, has been discovered affecting MOVEit, a widely-used secure file transfer protocol (SFTP) solution. The flaw, identified as an improper authentication error, poses a severe risk to enterprises using MOVEit Transfer by potentially allowing unauthorized
June 27, 2024Security researchers from Watchtowr have identified a critical authentication bypass vulnerability in Progress MOVEit Transfer software, a prominent enterprise file transfer solution. Designated as CVE-2024-5806 and rated CVSS 7.4 (HIGH), the flaw enables attackers to impersonate legitimate users
June 26, 2024The Biden Administration's recent decision to impose a complete ban on Russian-backed cybersecurity firm Kaspersky Lab within the United States has sparked debate across multiple sectors. This move, deemed essential by some and retaliatory by others, underscores critical concerns about
June 24, 2024The landscape of cybersecurity threats is witnessing a worrying surge in enterprise software vulnerabilities. Recent findings stress the importance of a proactive approach for Chief Information Security Officers (CISOs) and security professionals. This article delves into the trends, challenges,
June 19, 2024In the escalating cyber threat landscape, organizations with cloud-based infrastructures are continually seeking advanced measures to bolster security, especially for containerized microservice applications. Cisco has risen to this challenge by fortifying its Panoptica platform with sophisticated
May 7, 2024