The day's top cybersecurity news and in-depth coverage
September 23, 2021
Application programming interfaces have become a favorite target for attackers. These tools and platforms (both commercial and open source) will help identify errors, vulnerabilities, and excessive permissions. Read more â¶
A design issue in the Microsoft Exchange Autodiscover feature can cause Outlook and other third-party Exchange client applications to leak plaintext Windows domain credentials to external servers. Hereâs what companies can do now to mitigate the risk.
A new policy statement makes it clear that the US Federal Trade Commission will hold healthcare app and device makers accountable for reporting data breaches.
The ransomware keys might have been acquired by an ally, which would invoke the third-party doctrine where the decision to release was not the FBI's alone.
An increasing number of CISOs are devising a new set of metrics to show how theyâre impacting risk at their organizations.
Follow this advice to block malicious Office files from doing harm to your network even if you've implemented Microsoft's recommended actions.
The sanctions are aimed to cut ransomware gangs off from their revenue. Advisory on sanctions risks regarding ransomware payments also updated.
