Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
CUPS: Unraveling a Critical Vulnerability Chain in Unix Printing Systems
A series of critical vulnerabilities has been uncovered in the Common Unix Printing System (CUPS), specifically in the cups-browsed component and related libraries. This vulnerability chain allows remote, unauthenticated attackers to potentially execute arbitrary code with root privileges on affected systems. The discovery highlights significant security risks in a widely-used open-source component and raises crucial questions about legacy system support and security in modern IT environments.
How to Backup and Recovery for MySQL Database Server| BDRSuite Demo
In this BDRSuite demo, I'll guide you through configuring backups for your MySQL Database Server and restoring your data when needed. BDRSuite offers database-level backup for MySQL with flexible storage options, granular recovery, centralized management, and more.
How to Backup and Recovery for NAS/File Share| BDRSuite Demo
In this demo, we’ll configure NAS/File Share Backup with BDRSuite, ensuring the protection of your critical file data.
Fix Cross Site Scripting Vulnerability with Snyk
Watch the full video for more...
How It Works: Securing Gaming Servers From Cyber Threats
Whether you're a player or developer, you want gaming servers to stay secure. Unfortunately this is getting harder by the day, since malicious actors are always inventing new ways to cause chaos. You might be aware of the basic measures that are used to keep the infrastructure that supports top tier online experiences out of harm's way. But today's hackers are too cunning to get held back by these.
Five worthy reads: Cyberattacks in the banking industry
Five worthy reads is a regular column on five noteworthy items we’ve discovered while researching trending and timeless topics. This week, we explore cyberattacks in the banking industry. Gone are the days when paychecks were rolled out in envelopes on payday. We’ve evolved from juggling between counters to deposit a check to managing everything through a single mobile banking application. Indeed, modern banking saves us time and encourages self-service.
Unix CUPS Unauthenticated RCE Zero-Day Vulnerabilities (CVE-2024-47076, CVE-2024-47175, CVE-2024-47176, CVE-2024-47177): All you need to know
On September 23rd, Twitter user Simone Margaritelli (@evilsocket) announced that he has discovered and privately disclosed a CVSS 9.9 GNU/Linux unauthenticated RCE, which affects almost all Linux distributions, and that the public disclosure will happen on September 30th, Due to a suspected leak in the disclosure process, @evilsocket decided to advance the disclosure, and on September 26th, the vulnerabilities were disclosed in @evilsocket’s blog, along with a full proof of concept.
How do Compliance Regulations Drive Application Security?
A zero-day flaw in MOVEit software exposed the data of 66.4 million individuals, revealing businesses are increasingly vulnerable to cyberattacks. Applications, which manage sensitive data, are prime targets for these threats. Compliance regulations recognize the risks and establish guidelines aimed at ensuring applications meet data protection, privacy, and overall security. PCI DSS v4.0 for example introduces 64 new requirements including strict security measures to protect public-facing applications.
Cloudflare Abuse: How the SloppyLemming APT is Targeting Sensitive Organizations
In today’s cyber landscape, threat actors are becoming increasingly sophisticated, often leveraging free tools and cloud services to launch targeted attacks. One such group, known as SloppyLemming, is making waves by using platforms like Cloudflare Workers to engage in espionage against government and law enforcement agencies in the Indian subcontinent. This blog delves into their methods, targets, and how organizations can bolster their defenses against such threats.