June 2024

Week in review: MOVEit auth bypass flaws quitely fixed, open-source Rafel RAT targets Androids
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Progress quietly fixes MOVEit auth bypass flaws (CVE-2024-5805, …

USX Cyber GUARDIENT helps MSPs protect their clients
USX Cyber unveiled GUARDIENT, an eXtended Detection and Response (XDR) cybersecurity platform designed specifically for Managed Service Providers (MSPs) serving small to …

CISOs becoming more comfortable with risk levels
Shifts in the cyber threats landscape have changed the way today’s CISOs evaluate their business’s risk appetite, according to Netskope. CISO risk appetite levels …

Leveraging AI and automation for enhanced security operations
In this Help Net Security interview, Michelle Weston, VP of Security & Resiliency at Kyndryl, discusses the key challenges in security operations and how to address them. …

Web scraping is not just a security or fraud problem
Bots compose 42% of overall web traffic, and 65% of these bots are malicious, according to Akamai. Negative effects of scraper bots on business operations Web scraping is not …

New infosec products of the week: June 28, 2024
Here’s a look at the most interesting products from the past week, featuring releases from ARMO, Cofense, Datadog, and eSentire. Datadog LLM Observability secures generative …

Largest Croatian hospital under cyberattack
The University Hospital Centre Zagreb (KBC Zagreb) is under cyberattack that started on Wednesday night, the Croatian Radiotelevision has reported. Because of the attack, the …

Lastwall Quantum Shield delivers protection against Q-Day threats
Lastwall launched Quantum Shield, a quantum resilient product that protects conventional network infrastructures with the latest quantum cryptographic standards. Lastwall is …

PoC exploit for critical Fortra FileCatalyst flaw published (CVE-2024-5276)
A critical SQL injection vulnerability in Fortra FileCatalyst Workflow (CVE-2024-5276) has been patched; a PoC exploit is already available online. While there’s …

Datadog LLM Observability secures generative AI applications
Datadog announced LLM Observability, which allows AI application developers and ML engineers to efficiently monitor, improve and secure large language model (LLM) …

Lattice launches two solutions to help users stay ahead of cyberthreats
Lattice Semiconductor launched two new solutions to address customer challenges around increasing threats to system security. The company announced the Lattice MachXO5D-NX …

US offers $10 million for information on indicted WhisperGate malware suspect
A federal grand jury in Maryland returned an indictment charging a Russian citizen with conspiracy to hack into and destroy computer systems and data. If convicted, he faces a …