Apache Struts 2: A Zero-Day Quick Draw
It took fraudsters less than 24 hours after the disclosure of a previously unknown Apache Struts 2 vulnerability to develop a Python script to exploit it.
Zero-Day Malware Poses a Growing Threat
The increasing sophistication of cybercriminals has led to a significant surge in zero-day malware, according to a recent report.
It’s the Simple Things: Getting the Basics Right Can Solve Complex Security Issues
Instead of concentrating on zero-day threats, security teams should focus on preventing common, simple attacks to solve complex security issues.
Inside the Mind of a Hacker: Attacking the Memory
A savvy hacker may identify vulnerabilities that lead to memory attacks. Learn what contributes to these issues and best practices for avoiding them.
Inside the Mind of a Hacker: Attacking the Shell
To better prevent command injection attacks, developers need to learn how to think like a hacker and identify weak points in software.
Inside the Mind of a Hacker: Attacking Databases With SQL Injection
Hackers frequently use SQL injection as a means of attacking and taking over databases. Here's what you need to know to avoid this type of breach.
It’s Time to Let Go of QuickTime for Windows
IBM BigFix has a fixlet available for corporate users looking to uninstall QuickTime for Windows, which was found to have serious vulnerabilities.
Considerations for Patching the Cisco ASA Vulnerability
The Cisco ASA IKE buffer overflow is a critical vulnerability and requires a proactive response. Let's look at possible Cisco ASA remediation actions.
Evolving Threats: Why Deep Packet Inspection Is Critical for Intrusion Prevention
Traditional approaches to intrusion prevention are not as effective as they once were, and deep packet inspection is an attractive modern option.
Connecting the Dots: Experiences in Real-Life IT Security Incident Handling
A recently published report describes attack scenarios, the circumstances leading to an incident and the countermeasures that could have prevented it.