The Hacker News
- Severe Flaws Disclosed in Brocade SANnav SAN Management Software
- 10 Critical Endpoint Security Tips You Should Know
- New 'Brokewell' Android Malware Spread Through Fake Browser Updates
- Palo Alto Networks Outlines Remediation for Critical PAN-OS Flaw Under Attack
- Hackers Exploiting WP-Automatic Plugin Bug to Create Admin Accounts on WordPress Sites
Dark Reading
- Philippines Pummeled by Assortment of Cyberattacks & Misinformation Tied to China
- CISO Corner: Evil SBOMs; Zero-Trust Pioneer Slams Cloud Security; MITRE's Ivanti Issue
- Cyberattack Gold: SBOMs Offer an Easy Census of Vulnerable Software
- Minimum Viable Compliance: What You Should Care About and Why
- Military Tank Manual, 2017 Zero-Day Anchor Latest Ukraine Cyberattack
CSO Online
Security Boulevard
- Understanding Cybersecurity Vulnerabilities
- Bridging the Gap: Uniting Development and AppSec
- USENIX Security ’23 – Union Under Duress: Understanding Hazards of Duplicate Resource Mismediation in Android Software Supply Chain
- Agile by Design: Cybersecurity at the Heart of Transformation
- Cybersecurity Insights with Contrast CISO David Lindner | 4/26/24
Krebs on Security
SANS Internet Storm Center
- ISC Stormcast For Friday, April 26th, 2024 https://isc.sans.edu/podcastdetail/8956, (Fri, Apr 26th)
- ISC Stormcast For Thursday, April 25th, 2024 https://isc.sans.edu/podcastdetail/8954, (Thu, Apr 25th)
- Does it matter if iptables isn't running on my honeypot?, (Thu, Apr 25th)
- ISC Stormcast For Wednesday, April 24th, 2024 https://isc.sans.edu/podcastdetail/8952, (Wed, Apr 24th)
- API Rug Pull - The NIST NVD Database and API (Part 4 of 3), (Wed, Apr 24th)
Latest Posts
Security Advisories
CISA Alerts
Cisco Security
- Cisco Adaptive Security Appliance and Firepower Threat Defense Software Persistent Local Code Execution Vulnerability
- Cisco Adaptive Security Appliance and Firepower Threat Defense Software Web Services Denial of Service Vulnerability
- Cisco Adaptive Security Appliance and Firepower Threat Defense Software Command Injection Vulnerability
Fortiguard PSRT
Microsoft Security Advisories
Palo Alto Advisories
- CVE-2024-3400 PAN-OS: Arbitrary File Creation Leads to OS Command Injection Vulnerability in GlobalProtect (Severity: CRITICAL)
- PAN-SA-2024-0005 Informational Bulletin: Proof of Concept (PoC) Bypasses Protection Modules in Cortex XDR Agent (Severity: NONE)
- CVE-2024-3388 PAN-OS: User Impersonation in GlobalProtect SSL VPN (Severity: MEDIUM)