News

National Law Review11h
CISA Issues Alert on Potential Legacy Oracle Cloud Compromise
BleepingComputer has confirmed the rumor that Oracle has suffered a compromise affecting its legacy environment, including ...
Windows NTLM hash leak flaw exploited in phishing attacks on governments
A Windows vulnerability that exposes NTLM hashes using .library-ms files is now actively exploited by hackers in phishing ...
Texas Standard14h
A critical database tracking cybersecurity threats was on the chopping block. What happened?
A critical database that tracks cybersecurity threats around the world was hours away from losing its federal funding this ...
The U.S. Just Defunded a Key Security Database, And Your Android Phone…
Update: The Trump Admininstration decided to fund CVE after all. CISA funded CVE and ensured that there was no lapse when its ...
Microsoft17h
Microsoft’s Secure by Design journey: One year of success
Read about the initiatives Microsoft has undertaken over the past 18 months to support secure by design, secure by default, ...
Manufacturing.net17h
CISA Weighs in on Oracle Cloud Compromise
The agency outlined a number basic, yet crucial, best practices. The Cybersecurity and Infrastructure Security Agency (CISA) ...
Pillar Of America's Cyber Security Lost Funding Temporarily: What Investors Should Know About CVE Program, Funding Extension
Funding for a cybersecurity program considered important for the sector was nearly lost before an extension was reached.
Federal News Network18h
Cyber roundup: CISA pulls CVE from the brink
CISA extended the CVE program for now, but the cyber agency is being accused of playing "a game of chicken" with its funding.
The US almost let the CVE system die - the cybersecurity world's universal bug tracker
The US Department of Homeland Security has extended funding for the Common Vulnerabilities and Exposures (CVE) program, which ...
CISA warns of increased breach risks following Oracle Cloud leak
CISA warned of heightened breach risks after the compromise of legacy Oracle Cloud servers earlier this year and highlighted ...
CPO Magazine22h
CVE Program Gets Stay of Execution With Last-Minute Contract Extension for MITRE
MITRE, which has its headquarters in the US, has relied on federal funding for decades. Its contract for the development of ...
SecurityWeek22h
SonicWall Flags Old Vulnerability as Actively Exploited
A SonicWall SMA 100 series vulnerability patched in 2021, which went unnoticed at the time of patching, is being exploited in the wild.