CISA warned of Cyberattackers Exploiting a critical missing authentication vulnerability in Palo Alto Networks Expedition

CISA recently warned that attackers are exploiting a critical missing authentication vulnerability in Palo Alto Networks Expedition, a migration tool that can help convert firewall configuration from Checkpoint, Cisco, and other vendors to PAN-OS. This security flaw, tracked as CVE-2024-5910, was patched in July, and threat actors can remotely exploit it to reset application admin credentials on Internet-exposed Expedition…

Read More

Ivanti Cloud Addresses Critical Vulnerabilities in Endpoint Manager 

Ivanti Cloud Addresses Critical Vulnerabilities in Endpoint Manager According to the September 2024 security update published by Ivanti Cloud has enhanced its internal scanning, manual exploitation, and testing capabilities in recent months while also refining its responsible disclosure process to ensure the timely identification and resolution of potential issues. This has led to an increase…

Read More

Hackers Exploit Chrome Vulnerabilities, US Cyber Agency Urged Users to Update

Google Chrome users should check if their browser is updated, as versions prior to 124.0.6367.207 allow malicious actors to exploit critical flaws. Following an emergency security patch, Google has released Chrome version 125, which fixes two additional high-risk flaws. The Chrome team released stable version 125, which brings nine security fixes and other improvements. Users…

Read More

CISA Releases Guidance For Critical Infrastructure To Defend Against Chinese Hacking Group

CISA Releases Guidance For Critical Infrastructure To Defend Against Chinese Hacking Group CISA, along with several other U.S. authorities including the NSA, FBI and global partner Five Eyes cyber security agencies have warned critical infrastructure leaders to protect their systems against the Chinese Volt Typhoon hacking group. Volt Typhoon (also known as Vanguard Panda, Brronze…

Read More

2024 Trends for Cybersecurity ;What they Bring in for Practitioners Wiley Research

The cost of responding to cyber-attacks keeps mounting, federal and state regulators have responded with increased regulations and disclosure requirements enhancing the complexities associated with responding to ransomware attacks and data breaches. Wiley has looked back at the top cyber issues for 2023 and what they mean for 2024. The National Cyber security Strategy—which outlined a…

Read More