As the number of exposed devices tops 74,000, according to some reports, security pros say short of a patch, the workaround of disabling the HTTP feature in IOS XE is the best bet for now.
Ongoing cybersecurity workforce shortage around the world has prompted Sophos and Boise State University's Institute for Pervasive Security to collaborate in facilitating cybersecurity training, SiliconAngle reports.
More than 40,000 of over 1.8 million administrator credentials compromised by information-stealing malware that have been recovered from January to September were "admin," indicating the prevalence of weak passwords used in administrator portals and the elevated vulnerability of enterprise networks to cyberattacks, reports BleepingComputer.
SecurityWeek reports that organizations across the U.S. have been alerted by the Cybersecurity and Infrastructure Security Agency regarding three critical and high-severity Weintek cMT human-machine interface vulnerabilities, which should be immediately remediated.
TechRepublic reports that cloud apps have become the most prevalently clicked lure for spreading malware through spearphishing campaigns during the first three quarters of 2023, followed by e-commerce sites and government organizations.
Phishing, malware attacks spike in third quarter cyberattacks involving phishing and malware have grown by 173% and 110%, respectively, during the third quarter, compared with the second quarter, reports SiliconAngle.
BleepingComputer reports that Taiwanese multinational networking equipment provider D-Link has disclosed being impacted by a data breach stemming from the compromise of a test lab system running on end-of-life software following a successful phishing attack against an employee.
Fast Five
Selected by the SC Media Editorial team every Tuesday.
Sign up now for the top five issues cybersecurity pros need to know this week.
