Showing results for: Security

1042 results found
Critical RCE Flaw Fixed in New Versions of GitLab
September 20, 2023

GitLab’s Critical Security Update: What You Need to Know (CVE-2023-5009)

GitLab is a widely-used DevOps platform that allows for code hosting, continuous integration, and other collaborative features for both Community and Enterprise users. A new critical security release has just been rolled out for GitLab… Continue Reading

Microsoft AI Repository Exposes 38TB of Data: A Tale in AI and Cloud Security
September 19, 2023

Microsoft AI Repository Exposes 38TB of Data: A Tale in AI and Cloud Security

Wiz Research recently unveiled a startling incident involving Microsoft's AI research team: an accidental exposure of 38 terabytes of sensitive data. This case brings forth essential questions and lessons about data security, especially when operating… Continue Reading

Over 1,000 Zimbra Servers Compromised by Auth Bypass Vulnerability
August 25, 2023

A One-Click Security Vulnerability in Zimbra Collaboration Suite: CVE-2023-41106

In the realm of digital communication and collaboration, Zimbra Collaboration Suite has been a trusted ally for many. However, a shadow has been cast over its security recently. A one-click security vulnerability, capable of granting… Continue Reading

Exploring the NIST Cybersecurity Framework: Strengthening Digital Resilience
August 23, 2023

Exploring the NIST Cybersecurity Framework: Strengthening Digital Resilience

In today's rapidly evolving digital landscape, the term "cybersecurity" has become synonymous with safeguarding our most valuable assets: information and data. As we continue to witness an increasing number of cyber threats and attacks, ranging… Continue Reading

Critical Microsoft Power Platform Vulnerability: Proactive Security Methods to Prevent Exploitation
August 7, 2023

Critical Microsoft Power Platform Vulnerability: Proactive Security Methods to Prevent Exploitation

Microsoft fixed a critical vulnerability in its Power Platform after facing criticism for the delayed response. Tenable reported the vulnerability to Microsoft on March 30, 2023, and an official fix was issued in August. The… Continue Reading

Collective Security in Cyberspace with NATO
July 28, 2023

Collective Security in Cyberspace with NATO

The North Atlantic Treaty Organization (NATO) is an intergovernmental military alliance formed to ensure collective defense and security for its member nations. Security concerns in today's interconnected, digital world have grown to include not only… Continue Reading

Fortinet Fixes Six Serious Vulnerabilities
July 12, 2023

Critical RCE Vulnerability (CVE-2023-33308) in FortiOS and FortiProxy: Immediate Security Update Required

Fortinet has recently addressed a critical Remote Code Execution (RCE) vulnerability that affects FortiOS and FortiProxy. This vulnerability, tracked as CVE-2023-33308 and rated with a CVSSv3 score of 9.8, could be exploited by remote attackers… Continue Reading

Apple Releases Patch for Exploited Zero-Day
July 10, 2023

Apple Addresses Critical Zero-Day Exploit (CVE-2023-37450) with Rapid Security Response Updates

Apple has released Rapid Security Response (RSR) updates to tackle a zero-day vulnerability that has been actively exploited. This vulnerability affects fully-patched iPhones, Macs, and iPads, posing a significant security risk. Let's dive into the… Continue Reading

June 28, 2023

Using OSINT to Strengthen Organizational Security

Open-source intelligence or “OSINT” is collecting and analyzing data gathered from publicly available open sources (social media, news, dark web, etc.) to produce actionable intelligence crucial to organizational security. A wide range of individuals and… Continue Reading

May 2023 Cyberwatch Recap: A Month in Cybersecurity
June 22, 2023

May 2023 Cyberwatch Recap: A Month in Cybersecurity

Welcome to our May Cyberwatch blog post. Following our latest webinar, we delve into the notable cyber incidents from the past month. May 2023 saw a surge in ransomware, malware threats, and data leaks, unprecedentedly… Continue Reading

SOCRadar and VirusTotal Join Forces to Supercharge Cybersecurity Community
June 14, 2023

SOCRadar and VirusTotal Join Forces to Supercharge Cybersecurity Community

Today, SOCRadar, inventor of the Extended Threat Intelligence concept, and VirusTotal, a well-renowned malware detection service, announced an exciting new partnership designed to bolster cybersecurity efforts worldwide. This collaboration will see SOCRadar become a reliable data provider for… Continue Reading

The State of Cybersecurity in Healthcare: A Review of the Healthcare Threat Landscape Report
June 7, 2023

The State of Cybersecurity in Healthcare: A Review of SOCRadar’s Healthcare Threat Landscape Report

The cybersecurity landscape in the healthcare industry is becoming increasingly treacherous, as detailed in SOCRadar's recently published Healthcare Threat Landscape Report. This in-depth analysis illuminates the growing threat of cyber attacks, including a surge in ransomware… Continue Reading

Hacked Healthcare: Rising Security Breaches in the US
May 31, 2023

Hacked Healthcare: Rising Security Breaches in the US

The healthcare industry is an attractive, prime target for ransomware groups; the AIDS Trojan, also known as the PC Cyborg virus, was the first-ever ransomware virus documented. It targeted the healthcare industry. The AIDS trojan was… Continue Reading

Key to Achieving a Stronger Cybersecurity Posture: Zero Trust Policy
May 26, 2023

Key to Achieving a Stronger Cybersecurity Posture: Zero Trust Policy

In recent years, we have seen countless high-profile data breaches that have left businesses and individuals vulnerable. To combat these threats, there is one most effective security policy: Zero Trust (ZT). This powerful security concept is gaining traction… Continue Reading

G7: Cybersecurity Reflections
May 18, 2023

G7: Cybersecurity Reflections

The G7 Cybersecurity Summit 2023 is just around the corner and is being held in Hiroshima, Japan, which is a city that was devastated by an atomic bomb attack in 1945, now serves as a… Continue Reading

Gulf Countries Threat Landscape Report: Cyber Security Posture of the GCC Countries
May 12, 2023

Gulf Countries Threat Landscape Report: Cyber Security Posture of the GCC Countries

“Bahrain, Kuwait, Oman, Qatar, Saudi Arabia, and the United Arab Emirates constitute the Cooperation Council for the Arab States of the Gulf, generally known as the Gulf Cooperation Council (GCC), a regional, intergovernmental, political, and… Continue Reading

Increased Healthcare Security Breaches in 2022
May 10, 2023

Increased Healthcare Security Breaches in 2022

Data from the US government shows that there has been a significant increase in healthcare security breaches.  At least 125 data breaches of healthcare organizations have been reported since the beginning of April, according to a list… Continue Reading

AI vs. AI: Future of the Cybersecurity Battles
April 26, 2023

AI vs. AI: Future of the Cybersecurity Battles

Attacks and security solutions tailored with the help of artificial intelligence (AI) have become a trending subject in the security industry as AI bots continue to improve. The power of AI has initiated an arms… Continue Reading

Insider Threats: The Hidden Enemy of Cybersecurity
April 13, 2023

Insider Threats: The Hidden Enemy of Cybersecurity

The human factor is one of the most challenging components of cybersecurity, and the topic where the human factor is most evident is insider threats. Insider attacks negatively impact an organization's reputation, customer trust, and… Continue Reading

Microsoft and SAP Release Security Updates to Address Critical Vulnerabilities
April 12, 2023

Microsoft and SAP Release Security Updates to Address Critical Vulnerabilities

Microsoft has released new security updates on the Patch Tuesday April 2023, to address 97 vulnerabilities. One of these flaws is a zero-day vulnerability, which has been exploited in ransomware attacks, making it particularly concerning. Seven vulnerabilities are… Continue Reading

SOCRadar helps you visualize digital risk, and reduce your company's attack surface
Request Demo