Cisco has patched a medium-severity bug in its Identity Services Engine that allows authenticated admins to read arbitrary files. A public proof-of-concept exploit now exists, raising the risk of in-the-wild attacks. This follows a pattern of serious ISE flaws being exploited.
A year-long series from CRN highlights five critical leadership lessons from women in cybersecurity. The core message? Strong security is built on people-first leadership, not just technical control.
The public has until January 21 to comment on a massive R76-billion revenue adjustment for Eskom, which could force electricity tariffs up by about 10.5% this year. The move follows legal challenges over a lack of transparency in previous decisions.
Microsoft is putting its foot down on admin security. Starting February 9, 2026, any administrator without multi-factor authentication enabled will be locked out of key Microsoft 365 admin portals. This follows a similar move for the Azure Portal.
A cybersecurity report reveals a massive breach cluster affecting about 50 global companies, from airlines to critical infrastructure. The attacker, known as Zestix, used old passwords stolen by infostealers to access corporate file-sharing platforms. The entire campaign was possible because none of
A U.S. appeals court panel appeared inclined to allow lawsuits alleging social media platforms are addictive to young users to proceed. Judges questioned whether it was too early for the companies to claim immunity under Section 230.
A new security standard is locking down verifiable credentials. The EUDI wallet’s High Assurance Interoperability Profile (HAIP) 1.0, published in December 2025, now requires DPoP to prevent stolen token attacks. Luckily, Spring Boot 3.5, released in May 2025, has native support.
The RondoDox botnet has escalated its attacks by weaponizing the critical React2Shell vulnerability. Researchers warn it’s actively scanning for and infecting vulnerable Next.js servers to install cryptominers and Mirai-based malware. This marks a significant expansion for a botnet known for targeti
Lockly unveiled a larger, more connected smart safe at CES. It promises fingerprint access in 0.2 seconds and deep ties to other Lockly devices. But the security and privacy implications of a Wi-Fi safe are worth a long, hard look.
Taiwan’s government faced an average of 2.4 million cyberattacks per day in 2024, a doubling from the previous year. Officials say most of the activity is linked to China and is part of a coordinated “grey-zone” pressure campaign.
