CISA Emergency Directive Orders Mitigations After Microsoft Breach
The U.S. government has made public an emergency directive that it issued last week for federal agencies, ordering them to take
SEARCH
Lindsey O’Donnell-Welch
Executive EditorLindsey O’Donnell-Welch is an award-winning journalist who strives to shed light on how security issues impact not only businesses and defenders on the front line, but also the daily lives of consumers.
In her previous position at Threatpost, Lindsey covered all aspects of the cybersecurity industry - from data privacy regulatory efforts to the evolution of underground cybercriminal marketplaces. Prior to that, Lindsey specialized in writing about microprocessors, enterprise business technology and the Internet of Things at CRN. In Lindsey’s spare time, she enjoys playing tennis and traveling.
- lindsey@decipher.sc
Featured Articles
3 Things We Still Don’t Know About the XZ Backdoor
The XZ Utils backdoor was a very subtle operation that took several years to pull off, and while some of the technical details are
CISA Releases Cyber Incident Reporting Rule Draft
CISA has laid out the proposed details of the Cyber Incident Reporting for Critical Infrastructure Act (CIRCIA).
Barracuda: ESG Appliances With Actively Exploited Flaw Must Be Replaced
After deploying two patches, Barracuda said that businesses impacted by an actively exploited flaw must immediately replace their ESG appliances.
VMware Fixes Critical Network Monitoring Tool Flaws
Several versions of VMware's network monitoring tool have flaws that could enable an attacker with existing network access to remotely execute code.
Google Patches Type Confusion Zero Day in Chrome
The type confusion bug is the third zero day that Google has addressed this year.
North Korean Attackers Target Google Account Credentials
The North Korean Kimsuky group has targeted think tanks, academic institutions and news media organizations in order to steal their credentials and gather intelligence.
UNC4857 Exploits MOVEit Transfer Flaw in Data Extortion Attacks
Threat actors continue to target the critical-severity file transfer bug to launch data exfiltration attacks, and researchers say organizations should potentially expect ransom emails in the coming weeks.