Code hosting platform GitHub on Wednesday said it would make it mandatory for software developers to use at least one form of two-factor authentication (2FA) by the end of 2023.
GitHub Announces Mandatory 2FA for Code Contributors
US Gov Issues Security Memo on Quantum Computing Risks
National security memo warns that a quantum computing could jeopardize civilian and military communications, and defeat security protocols for most Internet-based financial transactions
Android’s May 2022 Security Updates Patch 36 Vulnerabilities
Google this week announced the release of patches for 36 vulnerabilities as part of its May 2022 security updates for Android.
Flaws in Avast, AVG Antiviruses Could Have Facilitated Attacks on Millions of Devices
Researchers at endpoint security firm SentinelOne have discovered two potentially serious vulnerabilities in antivirus products from Avast and AVG.
Cisco Patches Critical VM Escape in NFV Infrastructure Software
Cisco on Wednesday announced patches to address severe vulnerabilities in Enterprise Network Function Virtualization Infrastructure Software (NFVIS), including a critical bug that allows attackers to escape from a guest virtual machine (VM).
Kaspersky Warns of Fileless Malware Hidden in Windows Event Logs
Threat hunters at Kaspersky are publicly documenting a malicious campaign that abuses Windows event logs to store fileless last stage Trojans and keep them hidden in the file system.
Google Sees More APTs Using Ukraine War-Related Themes
Researchers at Google’s Threat Analysis Group (TAG) say the number of advanced threat actors using Ukraine war-related themes in cyberattacks went up in April with a surge in malware attacks targeting critical infrastructure.
Hubble Technology Banks $9 Million for Asset Visibility Platform
An early-stage Virginia startup has banked $9 million in venture capital funding to build an “agentless technology asset visibility” aimed at disrupting the asset management space.
F5 Informs BIG-IP Customers About 18 Serious Vulnerabilities
Security and application delivery solutions provider F5 on Wednesday released another quarterly security notification, which informs customers about more than 50 vulnerabilities and security exposures.
Cisco Issues Fresh Warning Over Counterfeit Switches
Cisco has issued a “field notice” to advise customers of its Catalyst 2960X/2960XR switches to upgrade the IOS software on their devices in order to ensure that they are not counterfeit.
