Security vulnerabilities stories - Page 17

GitHub has announced a range of new products designed to accelerate the company's push into major enterprises at its San Francisco event.

Azul's Vulnerability Detection, the new SaaS product, continuously detects vulnerabilities in Java applications by eliminating false positives.

Trustwave introduces its new Enterprise Pen Testing offering to meet the testing needs of large organizations with extensive vulnerability identification.

Users don't have to use Internet Explorer for its legacy to have left you vulnerable to LogCrusher and OverLog.

Trellix has announced the establishment of the Trellix Advanced Research Center to advance global threat intelligence.

Coding Labs mechanisms allow developers to move from learning to applying secure coding knowledge more efficiently, leading to fewer code vulnerabilities.

The Vectra Protect team identified a post-exploitation opportunity in August, allowing malicious actors to steal valid user credentials from Microsoft Teams.

Vulnerability disclosures impacting IoT devices increased by 57% in the first half of 2022 compared to the previous six months.

Check Point Software uncovers vulnerabilities in Xiaomi's mobile payment system, potentially affecting up to 1 billion users. Fixes have been provided.

Tenable has announced additions to Tenable Cloud Security that represent the next step in assessing threats related to cloud vulnerabilities.

The vulnerability disclosure landscape is highly volatile, with unreported vulnerabilities and inaccurate scoring, according to Flashpoint.

Report reveals heavy use of software vulnerabilities matching opportunistic behaviour of threat actors who search for weak points.

Claroty's research arm (Team82) has uncovered and disclosed two critical vulnerabilities in FileWave's Mobile Device Management (MDM) system.

Rapid7 enhances InsightCloudSec with layered context capabilities, providing security teams with a consolidated, real-time view of risk signals.

Hackers are exploiting security vulnerabilities faster than ever before, with the average time to exploitation down from 42 days to just 12 days.

Forescout's Vedere Labs has disclosed OT: ICEFALL, naming 56 vulnerabilities affecting devices from 10 operational technology vendors.

Research finds that there has been a 36% increase in cyber attack dwell time, with a median intruder dwell time of 15 days in 2021 versus 11 days in 2020.

The new cloud-based solution gives insights into an organisation's risk posture along with the ability to use drag and drop workflows to orchestrate responses.

MicroFocus has launched Data Center Automation for SaaS delivery, providing cost-effective vulnerability risk and compliance management.

Armis' new solution for risk-based vulnerability management enables businesses to prioritise mitigation efforts across the entire asset attack surface.