News Listing

Summary Summary The Microsoft Security Response Center (MSRC) was made aware of a vulnerability where Azure Command-Line Interface (CLI) could expose sensitive information, including credentials, through GitHub Actions logs. The researcher, from Palo Alto Networks Prisma Cloud, found that Azure CLI commands could be used to show sensitive data and output to Continuous Integration and Continuous Deployment (CI/CD) logs.

CISA is highlighting three practices critical infrastructures can implement to rapidly recover in the event of a significant disruption.

The reputational risks and financial costs of cybercrime are only growing in this interconnected world, and security leaders have to be prepared.

As is the case with any industry, more technology means more sensitive data stored in online environments, making safeguarding sensitive data, and maintaining privacy more of a priority than ever. As students and teachers increasingly rely on education-specific devices and applications, those users and organizations become more of a target for hackers. 

New research recently released reveals an increase in malicious code disguised as Python obfuscation packages. 

How can we concretely address the workforce challenges facing the cybersecurity industry? In this column, Pam Nigro focuses on DEI, career development and AI.

In this edition of Security’s Top 5 from Security magazine, we showcase the top stories and new developments from across the security industry throughout October.

QNAP has published a security advisory to address a vulnerability in QNAP products.

According to a report, 74% of IT and security decision makers said their organization’s IT or security budget increased compared to the year prior.

A recent BrandShield survey of chief information security officers (CISOs) found that CISOs reported an average loss of $2.1M USD per cyberattack.