Browsing: Threats and Vulnerabilities

Misconfigured Access Systems Expose Hundreds of Thousands of Employees and Organizations

Josh Breaker RolfeFebruary 27, 20254 Mins Read

Vast numbers of misconfigured Access Management Systems (AMS) across the globe are exposed to the public Internet, researchers from Internet…

Cisco Confirms Salt Typhoon Exploitation in Telecom Hits

Kirsten DoyleFebruary 24, 20255 Mins Read

Cisco Talos has been actively tracking reports of extensive intrusion attempts targeting multiple major U.S. telecommunications companies. First identified in…

How to take your firm from risk to resilience in 8 DORA-compliant steps

Tracey Hannan-JonesFebruary 19, 20255 Mins Read

There are two types of companies, as the saying goes: those that have been hacked and those that don’t know…

Qualys Identifies Critical Vulnerabilities that Enable DDoS, MITM Attacks

Kirsten DoyleFebruary 19, 20253 Mins Read

The Qualys Threat Research Unit (TRU) has uncovered two significant vulnerabilities in OpenSSH, a widely used open-source implementation of the…

The Biggest Cybersecurity Threats to Watch Out For in 2025

Michael GrayFebruary 18, 20255 Mins Read

In the last year, we’ve seen threats become more elaborate and tactical as they leverage the latest technologies. In 2024,…

2025 ZeroFox Forecast: Dark Web, Ransomware, Gen AI & Beyond

Dilki RathnayakeFebruary 18, 20256 Mins Read

Various threat actors and organizations are expected to undergo significant changes. Deep and Dark Web (DDW) marketplaces will likely be…

CISA, FBI Warn of Threats Exploiting Buffer Overflow Vulnerabilities

Kirsten DoyleFebruary 13, 20252 Mins Read

The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) have issued a new Secure by…

DeepSeek-R1: A Smorgasbord of Security Risks

Kirsten DoyleFebruary 12, 20254 Mins Read

In the short time since its debut, DeepSeek has made waves in the AI industry, garnering praise as well as…

Black Duck Report: Inventory, Automation, and Endorsement

Adam ParlettFebruary 10, 20254 Mins Read

Organizations are increasingly prioritizing compliance due to recent regulatory requirements, such as those from the US Government regarding the sale…

Qualys Report Raises Red Flags in DeepSeek-RI Security

Kirsten DoyleFebruary 6, 20257 Mins Read

A recent security analysis conducted by Qualys, using its QualysTotalAI solution, has raised significant concerns about DeepSeek-RI’s risks, particularly in…

Join our community of 8,500+ subscribers today!

Becoming a subscriber means you will be among the first to receive updates on the latest cybersecurity news, insights, and expert opinions.

Information Security Buzz is an independent resource that provides the experts’ comments, analysis, and opinion on the latest Cybersecurity news and topics