Dell and HP were among the first to release patches and fixes for the bug.

https://threatpost.com/intel-memory-bug-poses-risk-for-hundreds-of-products/179595/

Microsoft’s May Patch Tuesday roundup also included critical fixes for a number of flaws found in infrastructure present in many enterprise and cloud environments.

https://threatpost.com/microsoft-zero-day-mays-patch-tuesday/179579/

Why a private college that stayed in business for 157 years had to close after the combo of COVID-19 and ransomware proved too much.

https://threatpost.com/ransomware-deathblow-college/179574/

The bug has a severe rating of 9.8, public exploits are released.

https://threatpost.com/exploit-f5-big-ip-bug/179563/

A huge spike in fraudulent activities related to attacks leveraging business email accounts is a billion-dollar-problem.

https://threatpost.com/fbi-bec-43b/179539/

The vulnerability is ‘critical’ with a CVSS severity rating of 9.8 out of 10.

https://threatpost.com/f5-critical-bugbig-ip-systems/179514/

A flaw in all versions of the popular C standard libraries uClibe and uClibe-ng can allow for DNS poisoning attacks against target devices.

https://threatpost.com/dns-bug-millions-routers-iot-risk/179478/

A deep dive into securing containerized environments and understanding how they present unique security challenges.

https://threatpost.com/container_threats_cloud_defend/179452/

Exclusive Threatpost research examines organizations’ top cloud security concerns, attitudes towards zero-trust and DevSecOps.

https://threatpost.com/security-turbulence-in-the-cloud-survey-says/179437/

GitHub shared the timeline of breaches in April 2022, this timeline encompasses the information related to when a threat actor gained access and stole private repositories belonging to dozens of organizations.

https://threatpost.com/github-repos-stolen-oauth-tokens/179427/

The Botnet appears to use a new delivery method for compromising Windows systems after Microsoft disables VBA macros by default.

https://threatpost.com/emotet-back-new-tricks/179410/

Four months after the critical flaw was discovered, attackers have a massive attack surface from which they can exploit the flaw and take over systems, researchers found.

https://threatpost.com/java-apps-vulnerable-log4shell/179397/

Researchers propose fresh approaches to cloud-security bugs and mitigating exposure, impact and risk.

https://threatpost.com/cve-cloud-bug-system/179394/

How to use zero-trust architecture effectively in today’s modern cloud-dependent infrastructures.

https://threatpost.com/zero-trust-guide/179377/

A full 89 percent of organizations experienced one or more successful email breaches during the previous 12 months, translating into big-time costs.

https://threatpost.com/email-security-fail-block-threats/179370/

Last year, Google Project Zero tracked a record 58 exploited-in-the-wild zero-day security holes.

https://threatpost.com/google-2021-0-days/179355/

Exploring what’s next for public-cloud security, including top risks and how to implement better risk management.

https://threatpost.com/cyber-defense-public-cloud/179342/

Fortinet’s Derek Manky discusses the exponential increase in the speed that attackers weaponize fresh vulnerabilities, where botnets and offensive automation fit in, and the ramifications for security teams.

https://threatpost.com/cyberattackers-speed-fortinet-podcast/179294/

For April Patch Tuesday, the computing giant addressed a zero-day under active attack and several critical security vulnerabilities, including three that allow self-propagating exploits.

https://threatpost.com/microsoft-zero-days-wormable-bugs/179273/

Researchers discovered the vulnerability in an API already integrated into many bank systems, which could have defrauded millions of users by giving attackers access to their funds.

https://threatpost.com/ssrf-flaw-fintech-bank-accounts/179247/