Resources
1 Million HotJar Users Vulnerable to XSS Attacks
July 29, 2024 | Salt Labs discovered a critical XSS vulnerability in HotJar, impacting over 1 million websites.
RoguePuppet software supply chain exposure: Lessons learned
July 30, 2024 | Security researcher Adnan Khan discovered a flaw in Puppet Forge, dubbed RoguePuppet, allowing anyone with a
North Korean Hacker Attempts to Infiltrate KnowBe4
August 1, 2024 | KnowBe4 revealed a North Korean hacker tried to infiltrate its systems using a stolen identity and AI-enhanc
Mentorship advances security careers
August 2, 2024 | Security leaders agree: finding a mentor is crucial for career growth.
H1 2024 Cyber Threat Intelligence Threat Report
CrowdStrike vs. Microsoft: Who's at Fault for the IT Outage?
July 19, 2024 | A global IT outage caused by a CrowdStrike update has led to debate over responsibility.
Tips for Handling Cybersecurity Outages
July 19, 2024 | The CrowdStrike outage highlights key strategies for managing disruptions.
As CISOs Grapple with the C-suite, Job Satisfaction Takes a Hit
July 15, 2024 | Research shows CISO job satisfaction is tied to their access to company management.
Void Banshee Group Using Patched Zero-Day to Execute Infostealer
July 16, 2024 | APT group Void Banshee is exploiting a recently patched zero-day (CVE-2024-38112) to deploy the Atlantida inf
Buggy CrowdStrike EDR Update Crashes Windows Systems Worldwide
July 19, 2024 | A defective update to CrowdStrike Falcon Sensor caused mass IT outages globally, disrupting businesses, airli
14 Million OpenSSH Servers Exposed via Regression Flaw
July 1, 2024 | A critical remote code execution flaw (CVE-2024-6387) in OpenSSH on glibc-based Linux systems has been discove
Phantom Secrets: The Hidden Threat in Code Repositories
July 1, 2024 | Aqua Security reveals that API tokens, credentials, and passkeys remain exposed in code repositories, even aft