[ad_1] The National Institute of Standards and Technology (NIST) has published an updated guide on how to protect the supply chain against cyber attacks. Since 2020, NIST has published two draft documents on how the enterprise can better defend against supply chain attacks. Today, in response to Executive Order 14028: Enhancing the Nation’s Cybersecurity, NIST … Read more
[ad_1] Security researchers have discovered five vulnerabilities in Aruba (owned by HP) and Avaya (owned by ExtremeNetworks) networking equipment, which could allow malicious actors to remotely execute code on the devices. The damage caused by a successful attack ranges from a data breach and complete device takeover to lateral movement and defeat of network segmentation … Read more
[ad_1] The US Cybersecurity and Infrastructure Security Agency (CISA) added seven vulnerabilities to its list of actively exploited security issues, including those in Microsoft, Linux, and Jenkins. The ‘Catalog of Known Exploited Vulnerabilities’ is a list of vulnerabilities that are known to be actively exploited in cyber attacks and are required to be patched by … Read more