SecurityBrief New Zealand - Technology news for CISOs & cybersecurity decision-makers
New Zealand

Security vulnerabilities Stories - Page 11

Global Stories

Security vulnerabilities stories

CrowdStrike under fire at US hearing after global IT outage
AI Security

CrowdStrike under fire at US hearing after global IT outage

CrowdStrike faced fierce questioning at a US congressional hearing following a global IT outage in July, raising doubts about its software management robustness.

By Shannon Williams 3 min read Fri, 27th Sep 2024
Leapwork report reveals flawed AI testing, highlights need for change
DevOps

Leapwork report reveals flawed AI testing, highlights need for change

A Leapwork survey reveals only 16% of firms find their software testing efficient, despite 85% having integrated AI, uncovering widespread performance issues.

By Shannon Williams 3 min read Thu, 19th Sep 2024
Entro Security report reveals critical risks in managing NHIs
Cybersecurity

Entro Security report reveals critical risks in managing NHIs

Report reveals grave cybersecurity flaws, with 97% of Non-Human Identities having excessive privileges and 44% of tokens exposed.

By Shannon Williams 3 min read Tue, 17th Sep 2024
HackerOne launches free tier for vulnerability disclosure program
Marketing Technologies

HackerOne launches free tier for vulnerability disclosure program

HackerOne has introduced Essential VDP, aiming to aid organisations in handling security vulnerabilities and meeting compliance standards.

By Shannon Williams 3 min read Tue, 17th Sep 2024
September Patch Tuesday has revealed 79 vulnerabilities
Cybersecurity

September Patch Tuesday has revealed 79 vulnerabilities

Microsoft's September Patch Tuesday addresses 79 vulnerabilities, including four critical RCEs and bugs with in-the-wild exploitation. Surprisingly, no browser patches yet.

By Adam Barnett 6 min read Wed, 11th Sep 2024
Opus security unveils advanced AI-driven vulnerability engine
Unified Communications

Opus security unveils advanced AI-driven vulnerability engine

Opus Security unveils its AI-powered Advanced Multi-Layered Prioritization Engine, revolutionising how organisations manage and address vulnerabilities.

By Catherine Knowles 3 min read Wed, 11th Sep 2024
HackerOne launches PartnerOne to expand global cybersecurity access
EduTech

HackerOne launches PartnerOne to expand global cybersecurity access

HackerOne has unveiled PartnerOne, a new channel partner programme designed to broaden access to its innovative cybersecurity solutions globally.

By Catherine Knowles 3 min read Fri, 6th Sep 2024
Revenera unveils OSS Inspector plugin for IntelliJ IDEA users
Risk & Compliance

Revenera unveils OSS Inspector plugin for IntelliJ IDEA users

Revenera launches OSS Inspector for IntelliJ IDEA, helping developers identify open source software risks directly in their IDE, ensuring secure, compliant code.

By Catherine Knowles 3 min read Thu, 5th Sep 2024
Tenable Nessus introduces new risk prioritisation features
Risk & Compliance

Tenable Nessus introduces new risk prioritisation features

Tenable unveils new features in Tenable Nessus, enhancing risk prioritisation with EPSS and CVSS v4 for improved vulnerability management and compliance.

By Imee Dequito 3 min read Thu, 5th Sep 2024
GitLab launches AI-driven GitLab Duo Enterprise at USD $39 per user
Physical Security

GitLab launches AI-driven GitLab Duo Enterprise at USD $39 per user

GitLab unveils GitLab Duo Enterprise at USD $39 per user/month, offering AI-driven enhancements for secure, efficient software development to Ultimate customers.

By Imee Dequito 3 min read Fri, 23rd Aug 2024
Cyber threats surge in gaming industry through 2024
Advanced Persistent Threat Protection

Cyber threats surge in gaming industry through 2024

Akamai's data shows a surge in cyber threats aimed at the gaming industry in 2024, with bot activity, web attacks, and DDoS attacks reaching record highs.

By Shannon Williams 3 min read Thu, 22nd Aug 2024
Capital.com launches public bug bounty programme with Intigriti
Cybersecurity

Capital.com launches public bug bounty programme with Intigriti

Capital.com has unveiled a public bug bounty programme on Intigriti, inviting ethical hackers to enhance its cybersecurity and protect user data.

By Kaleah Salmon 3 min read Thu, 22nd Aug 2024
Newcastle City Council switches to Azul for Java security
Platform-as-a-Service

Newcastle City Council switches to Azul for Java security

Newcastle City Council has tackled major security vulnerabilities by replacing Oracle JDK 8 with Azul Platform Core, securing mission-critical Java applications.

By Catherine Knowles 3 min read Wed, 21st Aug 2024
August Patch Tuesday revealed 88 vulnerabilities
Cybersecurity

August Patch Tuesday revealed 88 vulnerabilities

Microsoft's August Patch Tuesday fixes 88 vulnerabilities, with evidence of in-the-wild exploitation and public disclosure for 10 of them.

By Adam Barnett 6 min read Thu, 15th Aug 2024
Microsoft addresses 88 CVEs in this month's Patch Tuesday
Cloud Security

Microsoft addresses 88 CVEs in this month's Patch Tuesday

Security experts underscore the importance of immediate remediation for vulnerabilities to mitigate risks and protect organisational assets.

By Shannon Williams 4 min read Wed, 14th Aug 2024

Stories from Other Regions

Security vulnerabilities stories

Survey: only 16% find their software testing efficient
DevOps

Survey: only 16% find their software testing efficient

Only 16% of organisations find their software testing effective amidst AI integration, revealing significant challenges and a need for better test practices.

By Shannon Williams 3 min read Thu, 19th Sep 2024
Finance sector lacking third-party risk plans despite DORA push
Supply Chain

Finance sector lacking third-party risk plans despite DORA push

Only 20.8% of finance professionals have stressed exit plans with suppliers, despite DORA recommendations, highlighting a key vulnerability exposed by a recent CrowdStrike outage.

By Catherine Knowles 4 min read Fri, 23rd Aug 2024
Lessons in improving cyber defences for Australian organisations
Ransomware

Lessons in improving cyber defences for Australian organisations

Australian firms must enhance cyber defences by integrating technology with skilled personnel and robust processes, amid rising AI-driven threats, reports Logicalis.

By John Griffin 4 min read Thu, 15th Aug 2024