Microsoft Admits to Two-Week Logging Outage in Cloud Products
Microsoft has disclosed a significant security incident involving a two-week outage of security logs for several of its cloud product
Security
Vulnerability in Open-Source Packages Puts Developers at Risk of Malicious Code
A vulnerability in open-source packages could allow attackers to execute malicious code, compromising systems and stealing data. Developers are advised to take precautions to mitigate the risks.
Cloud Security Crisis: Breaches Loom as Complexity Outpaces Expertise
A Tenable report reveals widespread cloud security misconfigurations, putting companies at risk of cyberattacks. Experts urge a comprehensive approach to mitigate risks, prioritizing vulnerability remediation and strong access control measures.
Southeast Asia Bolsters Cyberdefense Amid Growing AI-Era Threats
Southeast Asia launches a physical CERT facility in Singapore to enhance regional cybersecurity amid growing AI-era threats, with a focus on information sharing, capacity building, and best practices.
Hackers Retain Access to Internet Archive's Internal Emailing Tools
Hackers who breached the Internet Archive still have access to internal emailing tools, including a Zendesk token with permissions to access over 800,000 support tickets, raising concerns about data security.
Ecobee Expands Home Security System with Yale and August Partnerships
Ecobee partners with Yale and August to expand its home security system, integrating smart locks and sensors for a seamless user experience.
Massive Digital Supply Chain Attack Uncovered, Millions of Websites at Risk
A massive digital supply chain attack has been uncovered, putting millions of websites at risk. A little-known company, FUNNULL, exploited a popular JavaScript library to redirect users to a network of copycat gambling sites, highlighting the vulnerability of the web's complex global network.
SEC Cracks Down on Cybersecurity Disclosure: 4 Companies Fined $7 Million
The SEC has fined four companies $7 million for misleading disclosures related to the 2019 SolarWinds data breach, emphasizing the need for transparency and accuracy in reporting cybersecurity incidents.
Software Supply Chain Security Startup Socket Raises $40 Million to Combat Growing Threat
Socket, a startup providing tools to detect security vulnerabilities in open-source code, raises $40 million to combat the growing threat of software supply chain attacks, which could cost the economy billions in lost revenue and damages.