-
Learn More
Google Patches Critical Chrome Vulnerability and Additional Flaws
News Article from Sectigo
News Article Apr 26, 2024Google addressed a critical vulnerability (CVE-2024-4058) in its Chrome web browser on Wednesday, April 24th, 2024. This flaw resides within the ANGLE graphics layer engine and carries a “critical” severity rating, indicating its potential for severe exploitation.
-
Listen Now
EPISODE 381
Broadcast Date:
April 26, 20247 minutes
Podcast Apr 26, 2024Root Causes 381: Apple Chip Sideloading Attack Leaks Encryption Keys
A newly revealed side channel attack enables theft of private keys from M-series Apple chips. We explain.
-
Learn More
Cisco Warns of Massive Surge in Password-Spraying Attacks on VPNs
News Article from Sectigo
News Article Apr 24, 2024Attackers are indiscriminately targeting VPNs from Cisco and several other vendors in what may be a reconnaissance effort, the vendor says.
-
Learn More
NVD delays highlight vulnerability management woes: Put malware first
News Article from Sectigo
News Article Apr 24, 2024A decision by the National Institute of Standards and Technology (NIST) to change how it maintains the widely used National Vulnerability Database (NVD) has focused attention on the brittle nature of current enterprise vulnerability management processes.
-
Learn More
Akira takes in $42 million in ransom payments, now targets Linux servers
News Article from Sectigo
News Article Apr 24, 2024The Akira ransomware group netted itself $42 million in payments in the last year from over 250 organizations, according to a joint advisory released April 18 by four leading cybersecurity agencies across Europe and the United States.
-
Learn More
Malvertising: Fake Popular Software Ads Deliver New MadMxShell Backdoor
News Article from Sectigo
News Article Apr 24, 2024IT professionals are under attack! This article exposes a malicious malvertising campaign targeting IT teams with a novel backdoor named MadMxShell. Learn how attackers use typosquatting and DNS techniques to compromise systems.
-
Learn More
Hackers Create Legit Phishing Links With Ghost GitHub, GitLab Comments
News Article from Sectigo
News Article Apr 24, 2024Hackers are using unpublished GitHub and GitLab comments to generate phishing links that appear to come from legitimate open source software (OSS) projects.
-
Learn More
NVD delays highlight vulnerability management woes: Put malware first
News Article from Sectigo
News Article Apr 24, 2024A decision by the National Institute of Standards and Technology (NIST) to change how it maintains the widely used National Vulnerability Database (NVD) has focused attention on the brittle nature of current enterprise vulnerability management processes.
-
Learn More
Brute Force Password Cracking Takes Longer, But Celebration May Be Premature
News Article from Sectigo
News Article Apr 24, 2024Brute force cracking of passwords takes longer now than in the past, but the good news is not a cause for celebration, according to the latest annual audit of password cracking times released Tuesday by Hive Systems.
Depending on the length of the password and its composition — the mix of numbers, letters, and special characters — a password can be cracked instantly or take half a dozen eons to decipher.
-
Learn More
Sectigo Sponsors RSA 2024
Press Release from Sectigo
Press Release Apr 24, 2024SCOTTSDALE, Ariz., — April 24, 2024 — Sectigo®, the industry’s most innovative provider of comprehensive certificate lifecycle management (CLM), and website cybersecurity announced today its participation in RSA 2024, held May 6-9 at the Moscone Center in San Francisco.
-
Learn More
eIDAS 2.0: The concerns surrounding this new standard
Blog Post from Sectigo
Blog Post Apr 24, 2024Discover how eIDAS 2.0 aims to streamline online transactions while facing concerns over privacy and centralization.
-
Listen Now
EPISODE 380
Broadcast Date:
April 23, 202429 minutes
Podcast Apr 23, 2024Root Causes 380: If Quantum Supremacy Comes Earlier Than Expected
We talk about the challenges to PQC migration and what happens if quantum computers break RSA before we're expecting them to.