Atlassian has issued a patch for its Confluence workspace collaboration tool, which is being targeted in the wild with a zero-day vulnerability that gives attackers unauthenticated remote code execution privileges. The vulnerability has a CVSS score of 10 out of 10 for criticality.
Digital trust: It's the present and immediate future of how enterprises and customers do business, says Brendon O'Donovan of TeleSign. But what are the fundamentals to create it and the tools to ensure it throughout the customer relationship?
A zero-day vulnerability in Atlassian Confluence, a workspace collaboration tool that serves millions of daily active users, is being targeted in the wild. The flaw, according to the company's security advisory, gives attackers unauthenticated remote code execution privileges.
In the latest weekly update, four ISMG editors discuss important cybersecurity issues, including the trending topics at this year's RSA Conference, how security researchers are tracking a zero-day vulnerability in Microsoft Office and what Broadcom's acquisition of VMware means for security.
Okta's competitive win rates and renewal rates weren't measurably affected by the Lapsus$ cyberattack that came to light in March. The company looked through hundreds of opportunities with customers and prospects to see if any of the potential sales had been delayed or canceled due to the breach.
Lookout has bought password management provider SaferPass to provide carriers distributing the company's consumer app with more capabilities in a single place. Lookout wants to take SaferPass's technology beyond its existing base of consumer and SMB customers and bring it to large enterprises.
The 15th edition of the annual Verizon Data Breach Investigations Report examines the rapid growth in ransomware, along with other threat vectors. Chris Novak, global director of the Threat Research Advisory Center at Verizon Business Group, discusses key findings and reviews the security landscape.
According to Accenture Security's new report titled "Elevating the Cybersecurity Discussion," only 38% of CEOs and CFOs are confident that over 75% of their organization is actively protected by their cybersecurity program. Ryan LaSalle discusses how to help the C suite understand cybersecurity.
The latest edition of the ISMG Security Report discusses how security researchers have warned of a new attack campaign targeting 1,200 cloud-based Elasticsearch databases. It also revisits the Kaseya supply chain attack and examines how we can mitigate mobile phone fraud.
Memo to IT administrators: Don't store data in cloud in an unsecure manner. Security researchers at Secureworks have found more than 1,200 cloud-based, unsecured Elasticsearch databases that attackers wiped, leaving only a ransom note demanding Bitcoin in return for their restoration.
Milind Mungale of Protean eGov Technologies has led the security strategies for the company for two decades. He discusses the changing cybersecurity landscape and building security operations from the ground up for a company that handles sensitive government and citizen information.
In the aftermath of the BlackCat ransomware attack on May 24, 2022, that "severely affected" government services in Carinthia, the Austrian state has budgeted 500,000 euros to restore services and boost its cybersecurity and reinstated its passport issuance system, which was affected by the attack.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing bankinfosecurity.com, you agree to our use of cookies.