In recent months, the BlackByte ransomware group has caused significant concerns within the cybersecurity community by exploiting a newly disclosed VMware ESXi authentication bypass flaw, CVE-2024-37085. This group, which has a history of targeting known vulnerabilities using credential-stealing
Columbus City Schools have initiated a significant move towards enhancing the safety of students by employing surveillance software, a measure that underscores the district's commitment to preventing potential issues like cyberbullying and self-harm. This initiative is part of a broader trend among
The rapid integration of generative AI tools within runtime environments and cloud infrastructure security is presenting both significant advancements and notable risks within software supply chains. Companies such as Lightrun and ZEST Security are leveraging these advanced technologies to enhance
A new critical vulnerability, CVE-2024-5806, has been discovered affecting MOVEit, a widely-used secure file transfer protocol (SFTP) solution. The flaw, identified as an improper authentication error, poses a severe risk to enterprises using MOVEit Transfer by potentially allowing unauthorized
Security researchers from Watchtowr have identified a critical authentication bypass vulnerability in Progress MOVEit Transfer software, a prominent enterprise file transfer solution. Designated as CVE-2024-5806 and rated CVSS 7.4 (HIGH), the flaw enables attackers to impersonate legitimate users
The Biden Administration's recent decision to impose a complete ban on Russian-backed cybersecurity firm Kaspersky Lab within the United States has sparked debate across multiple sectors. This move, deemed essential by some and retaliatory by others, underscores critical concerns about national
