Critical Flaw Discovered in Cisco APIC for Switches — Patch ReleasedThe Hacker News
Cisco Systems on Wednesday issued patches to address a critical security vulnerability affecting the Application Policy Infrastructure Controller (APIC) interface used in its Nexus 9000 Series Switches that could be potentially abused to read or write arbitrary files on a...
Microsoft, Google to Invest $30 Billion in Cybersecurity Over Next 5 YearsThe Hacker News
Google and Microsoft said they are pledging to invest a total of $30 billion in cybersecurity advancements over the next five years, as the U.S. government partners with private sector companies to address threats facing the country in the wake of a...
Kaseya Issues Patches for Two New 0-Day Flaws Affecting Unitrends ServersThe Hacker News
U.S. technology firm Kaseya has released security patches to address two zero-day vulnerabilities affecting its Unitrends enterprise backup and continuity solution that could result in privilege escalation and authenticated remote code execution.
The two weaknesses are part of a trio of vulnerabilities discovered and reported...
Critical Cosmos Database Flaw Affected Thousands of Microsoft Azure CustomersThe Hacker News
Cloud infrastructure security company Wiz on Thursday revealed details of a now-fixed Azure Cosmos database vulnerability that could have been potentially exploited to grant any Azure user full admin access to other customers' database instances without any authorization.
The flaw, which...
The Increased Liability of Local In-home PropagationThe Hacker News
Today I discuss an attack vector conducive to cross-organizational spread, in-home local propagation. Though often overlooked, this vector is especially relevant today, as many corporate employees remain working from home.
In this post, I contrast in-home local propagation with traditional vectors...