Citrix is urging organizations to immediately patch the unauthenticated RCE vulnerability.
Follow Dark Reading:
 July 21, 2023
LATEST SECURITY NEWS & COMMENTARY
Attackers Exploit Citrix Zero-Day Bug to Pwn NetScaler ADC, Gateway
Citrix is urging organizations to immediately patch the unauthenticated RCE vulnerability.
Google Categorizes 6 Real-World AI Attacks to Prepare for Now
The models powering generative AI like ChatGPT are open to several common attack vectors that organizations need to understand and get ready for, according to Google's dedicated AI Red Team.
Apache OpenMeetings Wide Open to Account Takeover, Code Execution
Researcher discovers vulnerabilities in the open source Web application, which were fixed in the latest Apache OpenMeeting update.
North Korean Attackers Targeted Crypto Companies in JumpCloud Breach
Analysts continue piecing together who breached JumpCloud, why, and what else they've managed to pull off.
Critical Infrastructure Workers Better At Spotting Phishing
Critical-infrastructure employees are comparatively more engaged in organizational security — and compliance training — than those in other sectors.
Hacker-Turned-Security-Researcher Kevin Mitnick Dies Aged 59
The controversial former computer hacker has lost his battle with pancreatic cancer.
Mallox Ransomware Group Activity Shifts Into High Gear
Malicious activity targeting vulnerable SQL servers has surged 174% compared to 2022, Palo Alto's Unit 42 says.
Docker Leaks API Secrets & Private Keys, as Cybercriminals Pounce
Researchers found that the private keys and secrets they discovered being exposed within the Docker framework are already being used in the wild.
Estee Lauder Breached in Twin MOVEit Hacks, by Different Ransom Groups
The cosmetics conglomerate was apparently breached through the infamous MOVEit flaw by both Cl0p and BlackCat, at roughly the same time.
Enterprise Choices in Measuring Risk
Organizations have options when it comes to choosing the right tool to quantify risk
Should You Be Using a Cybersecurity Careers Framework?
Frameworks can help improve hiring practices and retention, and help guide education — which makes them an important asset worth exploiting.
MORE NEWS / MORE COMMENTARY
HOT TOPICS
Google Cloud Build Flaw Enables Privilege Escalation, Code Tampering
Google's fix to the Bad.Build flaw only partially addresses the issue, say security researchers who discovered it.

Reducing Security Debt in the Cloud
Security debt exists in on-premises data centers as well as in cloud platforms — but preventing it from accumulating in the cloud requires different skills, processes, and tools.

Name That Toon: Shark Sighting
Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card.

MORE
EDITORS' CHOICE
Microsoft Relents, Offers Free Critical Logging to All 365 Customers
Industry pushback prompts Microsoft to drop premium pricing for access to cloud logging data.
LATEST FROM DR TECHNOLOGY

Black Hat Offers Pen-Testing Certification Exam
The new independent exam track at Black Hat USA will feature an opportunity for attendees to take a practical exam to be certified in penetration testing.
LATEST FROM THE EDGE

Kevin Mandia Brings the HammerCon
US Air Force veteran and Mandiant CEO discussed dwell time and state-sponsored attacks at the Military Cyber Professionals Association's HammerCon conference.
LATEST FROM DR GLOBAL

Seed Group Brings Resecurity Options to UAE Region
UAE's Seed Group is partnering with Resecurity to expand cybersecurity options in the Middle East and Africa.
WEBINARS
  • Where and When Automation Makes Sense For Enterprise Cybersecurity

    A shortage of skilled IT security professionals has made it tempting to try to automate everything. But security teams have to be able to determine which tasks are safe to automate. How does emerging automation technology work, and how can ...

  • Finding a Backup Strategy That Works For You

    You've been hit with a ransomware, DDoS, natural disaster, or destructive cyberattack. One of the first questions: can we get our data back? Good back-ups are key to business continuity and disaster recovery, but backing up your data in preparation ...
View More Dark Reading Webinars >>
WHITE PAPERS
View More White Papers >>
FEATURED REPORTS
View More Dark Reading Reports >>
PRODUCTS & RELEASES
Deloitte Global Expands MXDR Cybersecurity SaaS Solution With Operational Technology and Identity Modules
TrustArc Announces TRUSTe EU-US Data Privacy Framework Verification
Plurilock Announces Generative AI 'Guardrails' Product, PromptGuard
Graylog Acquires Resurface.io's API Security Solution
MORE PRODUCTS & RELEASES
CURRENT ISSUE

How to Use Threat Intelligence to Mitigate Third-Party Risk
DOWNLOAD THIS ISSUE
VIEW BACK ISSUES
Dark Reading Daily
-- Published By Dark Reading
Informa Tech Holdings LLC | Registered in the United States
with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA
To opt-out of any future Dark Reading Daily Newsletter emails, please respond here.
Thoughts about this newsletter? Give us feedback.
Keep This Newsletter Out Of Your SPAM Folder
Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list:
If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation.
We take your privacy very seriously. Please review our Privacy Statement.
© 2023  |  Informa Tech  |  Privacy Statement  |  Terms & Conditions  |  Contact Us