'

Exploit Code Released For Fortra GoAnywhere MFT Flaw

Exploit Code Released For Fortra GoAnywhere MFT Flaw

Proof-of-concept exploit code has been released for a recently disclosed critical vulnerability in Fortra’s GoAnywhere Managed File Transfer (MFT) software. Fortra on Monday publicly disclosed the vulnerability in an advisory, but the patch was made available to customers earlier on Dec. 7. The flaw (CVE-2024-0204) could enable remote, unauthenticated attackers to bypass authentication in order … Read more

Categories duo

Venafi’s new offering to block unauthorized code across user environments

Venafi’s new offering to block unauthorized code across user environments

Cybersecurity software and services provider Venafi has launched a new offering, Stop Unauthorized Code, to help security teams detect and block unauthorized code across any development and operating environment. Combining Venafi’s existing code signing offering, CodeSign Protect, with in-house security intelligence and tools, the new offering packs a comprehensive toolkit to govern code authentication across … Read more

Gen AI fuelled 2023 cyberattacks, evolution pushed remediation costs: report

Gen AI fuelled 2023 cyberattacks, evolution pushed remediation costs: report

Cyberattacks became more targeted, sophisticated, and severe in 2023 as attackers pivoted to leverage generative AI, according to a Barracuda report. Evolved attacks called for greater remediation time and resources, spiking average annual remediation costs for the year. “The purpose of this research is to understand the economic consequences when a hacker decides to target … Read more

Civilian cyber reserves gaining steam at the US federal and state levels

Civilian cyber reserves gaining steam at the US federal and state levels

The creation of civilian cyber reserves has gained traction over the past several years as US federal and state governments come up against the same constraints the private sector faces when recruiting and paying the high salaries of scarce cybersecurity talent. The Homeland Security Act of 2002 first floated the concept of government-run volunteers to … Read more