In today’s business world, companies are determined to create software faster than ever before. Developers are under immense pressure to deliver products to customers quickly. To accelerate this process, developers often rely on pre-made “building blocks” – open-source components. This…
Category: Security Boulevard
Protecting Against Apache ActiveMQ Vulnerability
In the world of cybersecurity, new threats emerge constantly, and it’s vital for organizations to stay vigilant. Recently, a critical vulnerability, known as CVE-2023-46604, has been making headlines due to its exploitation by the Hello Kitty ransomware group. In this…
TuxCare Announces Early Access to CentOS 7 Extended Lifecycle Support
PALO ALTO, Calif. – November 15, 2023 – TuxCare, a global innovator in enterprise-grade cybersecurity for Linux, today announced it’s now offering early access to its CentOS 7 Extended Lifecycle Support (ELS) repository. Organizations can now gain missing patches to…
Apache Arrow PyArrow Arbitrary Code Execution Vulnerability (CVS 2023-47248) Notification
Overview Recently, NSFOCUS CERT found that Apache Arrow issued a security notice, which fixed an arbitrary code execution vulnerability in the PyArrow library (CVE-2023-47248). Due to PyArrow reading Arrow IPC, Feather, or Parquet data from untrusted sources, PyExtensionType creates an…
Rubrik Report Surfaces Scope of Data Security Challenge
A Rubrik survey found more than half of organizations suffered a loss of sensitive data in the last year, with 16% experiencing multiple incidents. The post Rubrik Report Surfaces Scope of Data Security Challenge appeared first on Security Boulevard. This…
DEF CON 31 – Panel: Internet Censorship What Governments Have in Store for You
Many thanks to DEF CON 31 for publishing their terrific DefCon Conference 31 presenters content. Originating from the conference events at Caesars Forum, Flamingo, Harrah’s and Linq in Las Vegas, Nevada; via the organizations YouTube channel. Permalink The post DEF…
Nosey Parker’s Ongoing Machine Learning Development
Nosey Parker is Praetorian’s secret detection tool, used regularly in our offensive security engagements. It combines regular expression-based detection with machine learning (ML) to find misplaced secrets in source code and web data. We originally wrote a blog post in…
Elevating MSPs and MSSPs Cybersecurity Game by Unleashing the Power of All-in-One
< p dir=”ltr”>By Tim Hankins, SVP of Growth at Judy Security In today’s rapidly evolving digital landscape, cybersecurity has become a top priority for businesses of all sizes. Managed Service Providers (MSPs) and Managed Security Service Providers (MSSPs) play a…
Scraping-as-a-Service: How a Harmless Tool Became a Cyber Threat
In the relentless battleground of bot and fraud prevention, one menacing adversary looms large—the pervasive threat of website scraping. This insidious automated threat, a more pervasive menace than even the scourges of ATOs and carding attacks, has infiltrated the very…
Lacework Extends Security Reach Into Application Development
Lacework added tools for evaluating code security that are integrated with its cloud native application protection platform (CNAPP). The post Lacework Extends Security Reach Into Application Development appeared first on Security Boulevard. This article has been indexed from Security Boulevard…