- Oracle releases April 2022 critical patch update. (to the original material)
- CISA adds three known exploited vulnerabilities to Catalog. (to the original material)
- CISA releases Secure Cloud Business Applications (SCuBA) guidance documents for public comment. (to the original material)
- Vulnerability Summary for the Week of April 11, 2022. (to the original material)
- When “secure” isn’t secure at all: High‑impact UEFI vulnerabilities discovered in Lenovo consumer laptops. (to the original material)
- Enterprises poorly protected against third-party risks. (to the original material)
- Good backups are critical to recovering from ransomware. (to the original material)
- Poodle and Doodle, FUD and the Sucuri WAF. (to the original material)
- Digital ID verification: Using a mobile device to prove your identity. (to the original material)
- Moving towards defense in depth under the gray skies of conflict. (to the original material)
- The changing role of the CCO (Chief Compliance Officer): Champion of innovation and business continuity. (to the original material)
- State of Pentesting 2022 report: Interactive event and open discussion. (to the original material)
- 81% of codebases contain known open source vulnerabilities. (to the original material)
- The state of coordinated vulnerability disclosure policies in EU. (to the original material)
- DaaS (Desktop as a Service) might be the future of work. (to the original material)
- CISA warns of attackers now exploiting Windows Print Spooler bug. (to the original material)
- Emotet botnet switches to 64-bit modules, increases activity. (to the original material)
- QNAP urges customers to disable UPnP port forwarding on routers. (to the original material)
- Microsoft disables SMB1 by default for Windows 11 Home Insiders. (to the original material)
- Real-time voice concealment algorithm blocks microphone spying. (to the original material)
- GitHub notifies owners of private repos stolen using OAuth tokens. (to the original material)
- How to protect your ADFS from password spraying attacks. (to the original material)
- New stealthy BotenaGo malware variant targets DVR devices. (to the original material)
- Lenovo UEFI firmware driver bugs affect over 100 laptop models. (to the original material)
- LinkedIn brand takes lead as most impersonated in phishing attacks. (to the original material)
- Vulnerabilities in Lenovo laptops exposes millions of users to firmware-level malware. (to the original material)
- LinkedIn leads the way as social networks overtake other phishing methods. (to the original material)
- Forensic Challenges for Security Professionals. (to the original material)
- An inside look at what makes the CVE Program tick. (to the original material)
- 5 ways to automate multi-cloud security. (to the original material)
- CISA No. 2: No IT and OT separation when it comes to patient safety during cyber incident. (to the original material)
- Hive ransomware group ‘exceptionally aggressive,’ HHS says in warning to health sector. (to the original material)
- North Korea hackers target blockchain and gaming companies, posing as job recruiters. (to the original material)
- Cyber innovation is the need of the hour to help organizations adopt new security technologies: Akshat Jain, CTO & Co-founder, Cyware. (to the original material)
- Spyware was used against Catalan targets and UK prime minister and Foreign Office. (to the original material)
- Fingerprint: Social Engineering. (to the original material)
- Malware in e-mail on the rise. (to the original material)
- Using emulation against anti-reverse engineering techniques. (to the original material)
- ESET warns of three flaws that affect over 100 Lenovo notebook models. (to the original material)
- Kaspersky releases a free decryptor for Yanluowang ransomware. (to the original material)
- NSO Group Pegasus spyware leverages new zero-click iPhone exploit in recent attacks. (to the original material)
- New SolarMarker variant upgrades evasion abilities to avoid detection. (to the original material)
- Crooks steal $182 million from Beanstalk DeFi platform. (to the original material)
- Stop Forced Arbitration in Data Privacy Legislation. (to the original material)
- Scraping public websites (still) isn’t a crime, Court of Appeals declares. (to the original material)
- Cryptocrime to cost the world $30 billion annually by 2025. (to the original material)
- Security awareness training market to hit $10 billion annually by 2027. (to the original material)
