16.1 C

Cisco extends SD-WAN options with AWS, Azure hybrid-cloud integration

Cisco has further broadened the cloud-integration options available to its SD-WAN customers with new connectivity options to AWS and Microsoft Azure cloud services.With these additions, Cisco’s goal is...

SecOps Teams Wrestle with Manual Processes, HR Gaps

Enterprise security teams are "drowning in alerts." Read more

APT41 Operatives Indicted as Sophisticated Hacking Activity Continues

Five alleged members of the China-linked advanced threat group and two associates have been indicted by a Federal grand jury, on dozens of charges. Read more

Palo Alto beefs-up its SD-WAN menu with machine learning, analytics

With an eye toward adding intelligence and growing deployment options, Palo Alto Networks has rolled out analytics, machine learning, and  new hardware appliances for its recently acquired SD-WAN...

Extreme unveils universal networking gear to simplify infrastructure decisions

Extreme Networks is unveiling a family of hardware and software that promises to let enterprise customers deploy wired or wireless platforms and manage security and other key resources...

Data Breaches Exposes Vets, COVID-19 Patients

Social engineering and employee mistakes lead to breach Veteran's Administration and the National Health Service. Read more

QR Codes Serve Up a Menu of Security Concerns

QR code usage is soaring in the pandemic -- but malicious versions aren't something that most people think about. Read more

MFA Bypass Bugs Opened Microsoft 365 to Attack

Vulnerabilities ‘that have existed for years’ in WS-Trust could be exploited to attack other services such as Azure and Visual Studio. Read more

Cloud Leak Exposes 320M Dating-Site Records

A misconfigured, Mailfire-owned Elasticsearch server impacted 70 dating and e-commerce sites, exposing PII and details such as romantic preferences. Read more

AA20-258A: Chinese Ministry of State Security-Affiliated Cyber Threat Actor Activity

Original release date: September 14, 2020SummaryThe Cybersecurity and Infrastructure Security Agency (CISA) has consistently observed Chinese Ministry of State Security (MSS)-affiliated cyber threat actors using publicly available information sources...

Latest article


http.client in Python 3.x before 3.5.10, 3.6.x before 3.6.12, 3.7.x before 3.7.9, and 3.8.x before 3.8.5 allows CRLF injection if the attacker controls the...


In TensorFlow Lite before versions 2.2.1 and 2.3.1, models using segment sum can trigger a denial of service by causing an out of memory...


In TensorFlow Lite before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, saved models in the flatbuffer format use a double indexing scheme: a model...