Directus has issued a fix for a cross-site scripting vulnerability impacting versions 9.6.0 and earlier of the open source modular content management system.
OpenSSH has activated post-quantum cryptography by default in OpenSSH 9, as well as introduced the hybrid Streamlined NTRU Prime + x25519 key exchange method in an effort to better protect against future quantum attacks, as well as any future vulnerabilities in NTRU Prime.
The US Justice Department was able to disrupt the Russian state-sponsored Sandworm hacking operation's Cyclops Blink botnet as a result of a search warrant that enabled the FBI to remotely access computers without owner permission under an amendment to Rule 41 in 2016.
Newmark’s philanthropy says funding will go to educate the public on cybersecurity and create programs to help people launch careers in cyber. He will speak to the concept of Cyber Civil Defense during a panel at the RSA Conference in June.
As the Cybersecurity and Infrastructure Security Agency looks to define new incident reporting regulations for energy companies, Democratic and Republican leaders on the House and Senate energy committees are calling on Secretary of Energy Jennifer Granholm to ensure her department remains the federal government’s designated leader on the issue.
A state audit of the Connecticut health insurance exchange, Access Health, found multiple security and compliance violations. But its report only outlines recommendations, rather than requiring major changes to address longstanding issues.
Fast Five
Selected by the SC Media Editorial team every Tuesday.
Sign up now for the top five issues cybersecurity pros need to know this week.