CISA collaborates with Trimble on Cityworks vulnerability
CISA partners with industry to address CVE-2025-0994, a vulnerability in Trimble's Cityworks Server, allowing potential remote code execution.
Opinions - Vulnerabilities
-
Cisco Releases Security Updates for Multiple Products
Cisco Releases Security Updates for Multiple Products -
Deloitte on Tech: Shifting security to the left
How DevOps and DevSecOps enhance cybersecurity and cyber resiliency. -
Zscaler reports phishing attacks to get worse as cybercriminals tap AI
A new Zscaler report identified a 60% year-over-year jump in phishing attacks, attributed to generative artificial intelligence-driven phishing schemes. -
Cisco Releases Security Updates Addressing ArcaneDoor, Vulnerabilities in Cisco Firewall Platforms
Cisco Releases Security Updates Addressing ArcaneDoor, Vulnerabilities in Cisco Firewall Platforms -
Palo Alto Networks Releases Guidance for Vulnerability in PAN-OS, CVE-2024-3400
Palo Alto Networks Releases Guidance for Vulnerability in PAN-OS, CVE-2024-3400 -
Cisco Releases Security Updates for Multiple Products
Cisco Releases Security Updates for Multiple Products -
CISA and FBI Release Secure by Design Alert to Urge Manufacturers to Eliminate SQL Injection Vulnerabilities
CISA and FBI Release Secure by Design Alert to Urge Manufacturers to Eliminate SQL Injection Vulnerabilities -
Cisco Releases Security Updates for IOS XR Software
Cisco Releases Security Updates for IOS XR Software
-
Cisco Releases Security Updates for Secure Client
Cisco Releases Security Updates for Secure Client -
Cisco Releases Security Advisories for Cisco NX-OS Software
Cisco Releases Security Advisories for Cisco NX-OS Software -
CISA and Partners Release Advisory on Threat Actors Exploiting Ivanti Connect Secure and Policy Secure Gateways Vulnerabilities
CISA and Partners Release Advisory on Threat Actors Exploiting Ivanti Connect Secure and Policy Secure Gateways Vulnerabilities -
How standards will eliminate SASE and zero-trust confusion
The continuous definition and redefinition of terms has caused confusion in the SASE market. Standards help customers compare different SASE offerings. -
Op-Ed: Will DevSecOps Finally Take Off?
“DevSecOps has been slow to mature, in part because the DevOps process was never meant to be a large software development process,” Gartner's Mark Horvath said. -
Is There a Security Crisis in the Open Source Software Supply Chain?
Following the Equifax breach, which exploited an open source framework library, many organizations increased their security postures, but that doesn't mean that open source is safe to use again. -
Will Artificial Intelligence Be Used for Good or Evil?
As AI and ML begin to reach their full potential, the race is on between network administrators and attackers to implement the technologies into their procedures, for better or -
A Guide To Securing Docker and Kubernetes Containers With a Firewall
Containers present a hefty challenge for traditional firewall rules and iptables. -
A New Perspective on Security and the Public Cloud
Moving applications and data to the public cloud brings a number of security advantages. -
Reduce Exposure to Vulnerabilities with Self-Driving Security
The only way to beat this game of whack-a-mole is to swing a faster mallet. -
Security is Critical for Open Source Projects
It is expensive to have a security team, and not all open source projects can afford it. -
Three "Telco Catastrophes" Hackers are Able to Cause
Privacy catastrophe, financial catastrophe, and performance catastrophe are three vulnerabilities hackers might take advantage of. -
If You Think Security Breaches Are Bad Now... Just Wait for IoT to Emerge at Scale
The IoT will bring exciting, new technology to market, but at what cost? -
Toward a More Secure SDN Control Layer — SRI International's View
SRI International's Phil Porras unveils new groundbreaking SDN security research and tools, led by SE-Floodlight, which is a distributed reference implementation of a security-enhanced SDN controller. It's part of