A quarter full of risk – get to know the notable vulnerabilities of Q3 2024 >>

Go beyond vulnerability scanning with the Vulcan Cyber ExposureOS >>

Exposure management analytics and KPIs you need to know about  >>

Get a demo

A quarter full of risk – get to know the notable vulnerabilities of Q3 2024 >>

Go beyond vulnerability scanning with the Vulcan Cyber ExposureOS >>

Exposure management analytics and KPIs you need to know about  >>

Get a demo
Get a demo

Author: Orani Amroussi

Orani has years of experience in marketing and content creation. He works to help security professionals learn about best practices for defending their enterprises in a rapidly evolving cybersecurity landscape.

IBM’s Cost of a Data Breach report 2023 – what we learned

In 2022, we explored the biggest takeaways from the IBM “Cost of a Data Breach” report for 2022. Among other findings, we noted that the cost of a data breach in 2022 was a record $4.35m per incident, an increase of 2.6% from 2021. This year’s report demonstrates another increase in this cost, and highlights… Continue reading IBM’s Cost of a Data Breach report 2023 – what we learned

How to fix CVE 2023-2640 & CVE-2023-32629 in the Ubuntu kernel

Two high-severity security vulnerabilities have been revealed in the Ubuntu kernel. These flaws, dubbed as GameOver(lay) and traced as CVE-2023-2640 and CVE-2023-32629 with a CVSS score of 7.8, are found in a module known as OverlayFS. The vulnerabilities stem from inadequate permissions checks in certain circumstances that could let a local user gain elevated privileges. … Continue reading How to fix CVE 2023-2640 & CVE-2023-32629 in the Ubuntu kernel

Compliance in the cloud: 5 things you need to know

Cloud transformation offers many benefits to the modern enterprise. But it also presents significant challenges. It takes a lot of research and planning. It calls for expertise in the new cloud-based model of delivering IT. And it can potentially involve a significant amount of application redesign and coding work. But it also requires a fresh… Continue reading Compliance in the cloud: 5 things you need to know

Vulcan Cyber is a launch partner for Wiz Integrations (WIN) platform

TEL AVIV – June 13, 2023  – Vulcan Cyber, developers of the cyber risk management platform for all attack surfaces, today announced the launch of the Vulcan Connector for Wiz and a partnership with leading cloud security provider Wiz as the company unveils Wiz Integrations (WIN). Vulcan Cyber, hand selected as a launch partner, brings… Continue reading Vulcan Cyber is a launch partner for Wiz Integrations (WIN) platform

Vulcan Cyber partners with InfoGuard AG to bring complete cyber risk management to DACH region

Vulcan Cyber risk-based vulnerability management solutions for all attack surfaces now available across Switzerland, Germany & Austria  TEL AVIV, Israel, May 29, 2023 – Vulcan Cyber, developers of the cyber risk management platform for infrastructure, application and cloud vulnerabilities, today announced a new partnership with InfoGuard AG, the Swiss expert for cyber security and cyber defence in the… Continue reading Vulcan Cyber partners with InfoGuard AG to bring complete cyber risk management to DACH region

How to fix CVE-2023-32243 in Elementor Essential Addons

A vulnerability has been discovered in Essential Addons for Elementor, a popular WordPress plugin with over one million active installations. The vulnerability, tracked as CVE-2023-32243, allows an unauthenticated attacker to reset the password of any user on the affected site, effectively granting them administrator privileges. Here’s what we know so far: What is CVE-2023-32243? CVE-2023-32243… Continue reading How to fix CVE-2023-32243 in Elementor Essential Addons

CISA’s KEV additions: Linux under threat?

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) recently expanded its Known Exploited Vulnerabilities catalog by adding seven more Linux-related vulnerabilities. Interestingly, some of these vulnerabilities aren’t fresh threats; one even traces back to 2010. Despite their age, these vulnerabilities are still being actively exploited, causing significant concerns for federal enterprises. Among the new entries… Continue reading CISA’s KEV additions: Linux under threat?

How to fix CVE-2023-2033 in Google Chrome

Google has released an urgent update to address a zero-day vulnerability actively exploited in its Chrome web browser, identified as CVE-2023-2033. This vulnerability, considered highly severe, has been classified as a type confusion issue in the V8 JavaScript engine. Here’s what you need to know: Does CVE-2023-2033 affect me? The vulnerability affects users of Google… Continue reading How to fix CVE-2023-2033 in Google Chrome

How to fix CVE-2023-25610 in FortiOS

Fortinet issued an advisory on March 7th regarding CVE-2023-25610, a severe remote code execution (RCE) vulnerability found in its operating system, FortiOS. The flaw, which stems from a buffer underwrite bug in the administrative interface, may enable a malicious remote unauthenticated attacker to execute code through carefully crafted requests. Here’s everything you need to know:… Continue reading How to fix CVE-2023-25610 in FortiOS

What Is spaghetti code and why is it a problem?

More than sloppy programming: how “spaghetti code” increases cyber risk When writing source code, one habit programmers should avoid is spaghetti coding. Left unchecked, it could cause multiple problems for your organization’s infrastructure later on. Here we discuss what spaghetti code is and why getting rid of it is a major factor in your cyber… Continue reading What Is spaghetti code and why is it a problem?

We use cookies to personalise content and ads, to provide social media features and to analyse our traffic. We also share information about your use of our site with our social media, advertising and analytics partners.

View more
Accept
Decline