nullcon Goa 2026 Call for Papers

The Call For Papers for nullcon Goa 2026 is now open. Nullcon is an information security conference held in Goa, India. The focus of the conference is to showcase the next generation of offensive and defensive security technology. It will take place February 28th through March 1st, 2026...

Transforming public sector security operations in the AI era

The cyberthreat landscape is evolving at an unprecedented pace, becoming increasingly dangerous and complex. Nation-state threat actors and cybercriminals are employing advanced tactics and generative AI to execute highly sophisticated attacks. This situation is further compounded by outdated...

Cybertron Reshapes AI Security as “Cyber Brain” Grows

Previously exclusive to Trend Vision One customers, select Trend Cybertron models, datasets and agents are now available via open-source. Build advanced security solutions and join us in developing the next generation of AI security technology...

编号撤回

RedSys 3DSecure is a payment security technology from RedSys, Spain, designed to improve the security of online transactions, especially during credit and debit card payments. This CVE number has been withdrawn...

CGA-FF78-M243-C476

Bulletin has no description...

Magic Security Dust

Adam Shostack is selling magic security dust. Its about time someone is commercializing this essential technology...

Command Execution Vulnerability in 4A Unified Security Control Platform of Beijing Qixingchen Information Security Technology Co.

Beijing Qixingchen Information Security Technology Co., Ltd. is an enterprise mainly engaged in science and technology promotion and application service industry. A command execution vulnerability exists in the 4A Unified Security Control Platform of Beijing Qixingchen Information Security...

Upcoming webinar: Is EDR or MDR better for your business?

Don't miss our upcoming webinar on EDR vs. MDR! In the webinar, Marcin Kleczynski, CEO and co-founder of Malwarebytes, and guest speaker Joseph Blankenship, Vice President and research director at Forrester, discuss topic such as: The difference between EDR and MDR, how EDR solutions can be...

End the compliance management blues

Coalfire teamed up with one of the worlds leading security technology engineering firms, anecdotes, to expand Compliance Essentials capabilities - automating compliance workflows and risks, evidence collection, and audit execution. All within one platform...

Unauthorized Access Vulnerability in LanSecS 2nd Generation Firewall of Beijing Shengbolun High-Tech Co.

Saintsburgh Moon is an industrial control security vendor, focusing on network security technology research, product development and security services of high-tech enterprises. An unauthorized access vulnerability exists in the LanSecS second-generation firewall of Beijing Sainte-Bernard Hi-Tech...

Honda's Keyless Access Bug Could Let Thieves Remotely Unlock and Start Vehicles

A duo of researchers has released a proof-of-concept PoC demonstrating the ability for a malicious actor to remote lock, unlock, and even start Honda and Acura vehicles by means of what's called a replay attack. The attack is made possible, thanks to a vulnerability in its remote keyless system...

SIEM and XDR: What’s Converging, What’s Not

Let’s start with the conclusion: Security incident and event management SIEM isn’t going anywhere anytime soon. Today, most security analysts are using their SIEMs for detection and response, making it the core tool within the security operations center SOC. SIEM aggregates and monitors critical...

Build Your 2022 Cybersecurity Plan With This Free PPT Template

The end of the year is coming, and it's time for security decision-makers to make plans for 2022 and get management approval. Typically, this entails making a solid case regarding why current resources, while yielding significant value, need to be reallocated and enhanced. The Definitive 2022...

Weak password vulnerability in OLYM Reporter of Shenzhen Aolian Information Security Technology Co.

hereinafter referred to as "AOLINK" is a comprehensive cryptographic security enterprise integrating algorithm development, product research and development, solution realization, standard formulation and forward-looking technology research, and possessing the international leading comprehensive...

Weak Password Vulnerability in Xinda Internet Security Internet Behavior Management System

Cinda Network Security is a national high-tech enterprise focusing on the research and application of network security technology. There is a weak password vulnerability in Xinda Internet Behavior Management System, which can be exploited by attackers to obtain sensitive information...

File Upload Vulnerability in Terminal Security System of Beijing Falcon Security Technology Co.

Terminal Security System V9.0 is a terminal security management platform specially designed for the government, military industry, energy, education, medical care and grouped enterprises. There is a file uploading vulnerability in the Terminal Security System of Beijing Falcon Security Technology...

V8+ Terminal Security System of Beijing Falcon Security Technology Co., Ltd. has Arbitrary File Download Vulnerability

V8+ Terminal Security System is a new-generation enterprise terminal security software, which can dynamically detect, real-time process, and trace unknown threats in the user's network across the network to meet the increasingly complex needs of domestic enterprise users for security protection o...

Beijing Falcon Security Technology Co., Ltd Terminal Security System 9.0 has Arbitrary File Download Vulnerability

Terminal Security System V9.0 is a terminal security management platform specially designed for the government, military industry, energy, education, medical treatment and grouped enterprises. Beijing Falcon Security Technology Co., Ltd Terminal Security System 9.0 has an arbitrary file download...

BlueVoyant optimizes customer security with Microsoft security services

This blog post is part of the Microsoft Intelligent Security Association MISA guest blog series. Learn more about MISA. What a year it has been. The rapid and unexpected transition to work from home is one of the biggest issues affecting companies of all sizes and industries in 2020. As companies...

A New Paradigm in Data Security: Insider Risk Management

The pandemic was a force accelerator for digital transformation in the enterprise. It’s not just the dramatic remote work shift — it’s a profound shift toward prioritizing speed and flexibility as the drivers of a company’s competitive advantage. But as faster, more agile ways of working...