JavaScript security: The importance of prioritizing the client side
In this interview with Help Net Security, Vitaly Lim, CTO at Feroot, talks about the most common JavaScript threats, the devastating impact of malicious or vulnerable code, and the importance of JavaScript security in the development process. We’re.....»»
The first iOS 18 update fixes a major bug with Apple’s Passwords app
You can now download iOS 18.0.1 on your iPhone. The update includes a number of security fixes that address problems with the original iOS 18 release......»»
Shop the best budget-friendly early October Prime Day deals — all under $25
Prime Day isn't just for big purchases. Score a Blink security camera, Anker wireless charger, Soundcore earbuds, and more — all for under $25. Sometimes good things come with small price tags. Amazon' Prime Day sales are always a great time.....»»
macOS Sequoia 15.0.1 now available with important bug fixes
macOS 15.0.1 is now rolling out with some key bug fixes for Mac users. The update addresses problems in the Messages app as well as compatibility issues that had affected third-party security software. Head below for the full release notes. more.....»»
iOS 18.0.1 fixes security issues affecting iPhone microphone and Passwords app
In addition to a handful of notable bug fixes and performance improvements, today’s iOS 18.0.1 and iPadOS 18.0.1 updates also include a pair of important security fixes. Apple says that the updates include a fix for microphone access on the iPhone.....»»
New infosec products of the week: October 4, 2024
Here’s a look at the most interesting products from the past week, featuring releases from Balbix, Halcyon, Metomic, Red Sift, SAFE Security, Veeam Software, and Legit Security. SAFE X equips CISOs with integrated data from all their existing cyber.....»»
Cybercriminals capitalize on poorly configured cloud environments
Off-the-shelf offensive security tools and poorly configured cloud environments create openings in the attack surface, according to Elastic. Adversaries are utilizing off-the-shelf tools Offensive security tools (OSTs), including Cobalt Strike and Me.....»»
Best practices for implementing threat exposure management, reducing cyber risk exposure
In this Help Net Security interview, Sanaz Yashar, CEO at Zafran, discusses the role of threat exposure management (TEM) in modern cybersecurity strategies. As traditional vulnerability management evolves, TEM addresses the overwhelming risks arising.....»»
Who is Rick Flag Sr.? James Gunn explains Frank Grillo’s importance to Peacemaker, Superman
In a recent interview, James Gunn teased Frank Grillo's role of Rick Flag Sr. and his impact in the DC Universe......»»
Qualitative study examines how ordinary people "sense" water quality
Seeing—and tasting—is believing: A qualitative study of communities living along the Philippines' bustling Marikina River underscores the importance of taking into account local peoples' everyday experiences, practices, and perceptions in establi.....»»
Aqara Smart Lock U300 is now available with Apple Home Key, Matter, and Thread support
has officially announced the release of its latest innovation in home security: the Smart Lock U300. This new smart lever lock is the third in Aqara’s lineup to support Apple Home Key. It also includes support for Thread and Matter, so it works pe.....»»
Critical Ivanti Endpoint Manager flaw exploited (CVE-2024-29824)
CVE-2024-29824, an unauthenticated SQL Injection vulnerability in Ivanti Endpoint Manager (EPM) appliances, is being exploited by attackers, the Cybersecurity and Infrastructure Security Agency has confirmed by adding the bug to its Known Exploited V.....»»
The darker side of human rights for great apes
The Spanish government has announced plans to ban harmful experiments on great apes as part of a wider initiative to give them increased rights closer to the ones humans enjoy......»»
Manufacturers are lucrative targets for cybercriminals
Hackers and other bad actors believe manufacturers are behind on security measures and more likely to pay a ransom......»»
Legit Posture Score empowers security teams to measure and manage their AppSec posture
Legit Security launched its new “Legit Posture Score,” delivering a dynamic, comprehensive, and fully transparent ASPM rating system. Now security teams can proactively measure and manage their AppSec posture instantly with a holistic sco.....»»
15% of office workers use unsanctioned GenAI tools
Rigid security protocols — such as complex authentication processes and highly restrictive access controls — can frustrate employees, slow productivity and lead to unsafe workarounds, according to Ivanti. Understanding workplace behavior key to s.....»»
Spotting AI-generated scams: Red flags to watch for
In this Help Net Security interview, Andrius Popovas, Chief Risk Officer at Mano Bank, discusses the most prevalent AI-driven fraud schemes, such as phishing attacks and deepfakes. He explains how AI manipulates videos and audio to deceive victims an.....»»
Whitepaper: Reach higher in your career with cloud security
The cybersecurity skills gap presents ongoing challenges worldwide, so organizations are scrambling to fill cloud security positions. Having a subject matter expert on staff qualified to advise on cloud security requirements is more important now tha.....»»
Preserving nature"s genetic resources: Wild banana relatives of mainland Southeast Asia reveal hidden diversity
In a new study, researchers have uncovered a wealth of hidden diversity among wild banana species in mainland Southeast Asia. The discovery, which has been published in PLoS ONE, highlights the critical importance of conserving these genetic resource.....»»
PlexTrac unveils new capabilities to prioritize proactive security remediation
PlexTrac announced significant enhancements to its platform. These updates are designed to help enterprises and security service providers harness proactive security by offering business context, automating risk scoring to focus on what matters most,.....»»
Venafi helps organizations solve more machine identity security problems
Venafi introduced new product capabilities in its Control Plane for Machine Identities. This latest version of the Venafi Control Plane will enable security and platform teams to address the most critical machine identity security challenges and help.....»»