patching

May 2022 Windows Patches Could Cause Auth Issues On Domain Controllers

MAY 19, 2022 16:36 GMT Proceed with caution before patching Domain Controllers in your environment with Microsoft’s May…

May 19, 2022 16:09 GMT

Why Scheduled Patch Windows Are Bad Practice

The growing rate of new vulnerabilities and the short time it takes adversaries to weaponize them is making the practice of patch windows less sustainable with every passing day. It's time to consider alternatives.

April 18, 2022 20:02 GMT

Going Upstream in Search of Secure Linux

GNU/Linux and open source software in general are a backbone of IT infrastructure worldwide. In stark contrast to…

February 23, 2022 18:19 GMT

Vulnerability Management

Vulnerability Management is the practice of identifying and remediating known bugs in software that pose a security threat.

August 31, 2021 21:36 GMT

Why the Vulnerability Management Industry Failed Us, and What To Do About It

How far have vulnerability management tooling vendors actually come since it became a thing in the 90's?

August 20, 2021 17:42 GMT

Hand-Picked Top-Read Stories

The Risks of Cybersecurity Vulnerabilities: How They’re Impacting Public Utilities

Why is DDoS Still So Effective After 20 Years?

Weekly Top 10: 12.16.2024: OpenWrt Flaw Allows Distribution of Malicious Firmware; Vulnerability in WPForms Allows for Arbitrary Stripe Refunds; AuthQuake Attack Allows MFA Bypass for Microsoft Accounts, and More.

Trending Tags

patching

May 2022 Windows Patches Could Cause Auth Issues On Domain Controllers

Why Scheduled Patch Windows Are Bad Practice

Going Upstream in Search of Secure Linux

Vulnerability Management

Why the Vulnerability Management Industry Failed Us, and What To Do About It

Threat Advisories

Weekly Top 10: 12.16.2024: OpenWrt Flaw Allows Distribution of Malicious Firmware; Vulnerability in WPForms Allows for Arbitrary Stripe Refunds; AuthQuake Attack Allows MFA Bypass for Microsoft Accounts, and More.

Weekly Top 10: 12.9.2024: New Windows Zero-Day Exposes NTLM Credentials, Gets Unofficial Patch; Supply Chain Attack Detected in Solana’s web3.js Library; Snowblind: The Invisible Hand of Secret Blizzard, and More.

Weekly Top 10: 11.25.2024: Critical Flaw in End-of-Life D-Link VPN Routers; Actively Exploited RCE Flaw Impacting VMware vCenter; Russian Linked Threat Actor Linked in Cyber Espionage Campaign, and More.

Palo Alto Recommends Urgent Mitigation For Authentication Bypass Vulnerability in PAN-OS

Weekly Top 10: 11.18.2024: Microsoft Exchange Adds Warning to Emails Abusing Spoofing Flaw; Evasive ZIP Concatenation: Trojan Targets Windows Users; Microsoft November 2024 Patch Tuesday Fixes 4 Zero-Days, 89 Flaws, and More.

Education

Protecting Microsoft Teams From Data Exfiltration – A Tactical DLP Rule

Anatomy of a Data Breach

OpenAI Cybersecurity Research

Breach Report: Healthcare

Analysis of GalComm Chrome Extension Malware