searchtwitterarrow rightmail strokearrow leftmail solidfacebooklinkedinplusangle upmagazine plus
Help Net Security - Daily information security news with a focus on enterprise security.
Help Net Security - Daily information security news with a focus on enterprise security.
  • News
  • Features
  • Expert analysis
  • Videos
  • Reviews
  • Events
  • Whitepapers
  • Industry news
  • Product showcase
  • Newsletters

Zeljka Zorz

Get our top stories in your inbox
Progress MOVEit

MOVEit Transfer zero-day attacks: The latest info

June 2, 2023

There’s new information about the zero-day vulnerability in Progress Software’s MOVEit Transfer solution exploited by attackers and – more importantly – …

Progress MOVEit

Critical zero-day vulnerability in MOVEit Transfer exploited by attackers!

June 1, 2023

UPDATE (June 2, 2023, 05:55 a.m. ET): Check out our update on this evolving situation. A critical zero-day vulnerability in Progress Software’s enterprise managed file …

Google Drive

Threat actors can exfiltrate data from Google Drive without leaving a trace

June 1, 2023

Google Workspace (formerly G Suite) has a weak spot that can prevent the discovery of data exfiltration from Google Drive by a malicious outsider or insider, Mitiga …

Zyxel

Zyxel firewalls under attack by Mirai-like botnet

June 1, 2023

CVE-2023-28771, the critical command injection vulnerability affecting many Zyxel firewalls, is being actively exploited by a Mirai-like botnet, and has been added to …

Apache NiFi

Someone is roping Apache NiFi servers into a cryptomining botnet

May 31, 2023

If you’re running an Apache NiFi instance exposed on the internet and you have not secured access to it, the underlying host may already be covertly cryptomining on …

Kali Linux

Kali Linux 2023.2 released: New tools, a pre-built Hyper-V image, a new audio stack, and more!

May 31, 2023

Offensive Security has released Kali Linux 2023.2, the latest version of its popular penetration testing and digital forensics platform. New tools in Kali Linux 2023.2 Aside …

Barracuda

Attackers hacked Barracuda ESG appliances via zero-day since October 2022

May 30, 2023

Barracuda says that the recently discovered compromise of some of it clients’ ESG appliances via a zero-day vulnerability (CVE-2023-2868) resulted in the deployment of …

tunnel

Barracuda email security appliances hacked via zero-day vulnerability (CVE-2023-2868)

May 25, 2023

A vulnerability (CVE-2023-2868) in Barracuda Networks’ Email Security Gateway (ESG) appliances has been exploited by attackers, the company has warned. About …

Research result

Microsoft, GitHub announce application security testing tools for Azure DevOps

May 24, 2023

GitHub has announced that its application security testing tools are now more widely available for subscribers of Microsoft’s Azure DevOps Services. Enabling GitHub …

Zyxel

Vulnerability in Zyxel firewalls may soon be widely exploited (CVE-2023-28771)

May 22, 2023

A recently fixed command injection vulnerability (CVE-2023-28771) affecting a variety Zyxel firewalls may soon be exploited in the wild, Rapid7 researchers have warned, after …

Apple

Apple fixes WebKit 0-days under attack (CVE-2023-28204, CVE-2023-32373, CVE-2023-32409)

May 19, 2023

Apple has released security updates for iOS and iPadOS, macOS, tvOS and watchOS, delivering fixes for many vulnerabilities but, most importantly, for CVE-2023-32409, a WebKit …

Permit.io

Introducing Permit.io: Simplifying access control and policy management for developers

May 18, 2023

In this Help Net Security video interview, Or Weis, Co-Founder and CEO of Permit.io, discusses an innovative approach to managing permissions and access control within …

Posts navigation

1 2 3 4 5 … 664

Featured news

  • Google triples reward for Chrome full chain exploits
  • MOVEit Transfer zero-day attacks: The latest info
  • Qakbot: The trojan that just won’t go away
Spin Up A CIS Hardened Image

Sponsored

The best defense against cyber threats for lean security teams

Webinar: Tips from MSSPs to MSSPs – starting a vCISO practice

Security in the cloud with more automation

CISOs struggle with stress and limited resources

Don't miss

Google triples reward for Chrome full chain exploits

MOVEit Transfer zero-day attacks: The latest info

Qakbot: The trojan that just won’t go away

How defense contractors can move from cybersecurity to cyber resilience

Introducing the book: Cybersecurity First Principles

Cybersecurity news
Help Net Security - Daily information security news with a focus on enterprise security.
© Copyright 1998-2023 by Help Net Security
Read our privacy policy | About us | Advertise
Follow us