The year ahead will be pivotal for an initiative that encourages young Americans to study in China as Beijing tries to ramp up people-to-people exchanges, according to a leading American business group. As ties between the two countries remain strained ahead of the imminent return of US president-elect Donald Trump, both countries have been urged … Read more
Dec 11, 2024Ravie LakshmananVulnerability / Network Security Ivanti has released security updates to address multiple critical flaws in its Cloud Services Application (CSA) and Connect Secure products that could lead to privilege escalation and code execution. The list of vulnerabilities is as follows – CVE-2024-11639 (CVSS score: 10.0) – An authentication bypass vulnerability in the … Read more
Nozomi Networks and Advens have announced a strategic partnership aimed at enhancing cybersecurity services for operational technology (OT) and Internet of Things (IoT) environments across Europe. This collaboration responds to the increasing demand for managed security services tailored to the unique needs of critical infrastructure. Advens will integrate Nozomi Networks’ advanced solutions, which are certified … Read more
Nov 27, 2024Ravie LakshmananVulnerability / Software Security A critical security flaw impacting the ProjectSend open-source file-sharing application has likely come under active exploitation in the wild, according to findings from VulnCheck. The vulnerability, originally patched over a year-and-a-half ago as part of a commit pushed in May 2023 , was not officially made available until … Read more
Nov 26, 2024Ravie LakshmananVulnerability / Website Security Two critical security flaws impacting the Spam protection, Anti-Spam, and FireWall plugin WordPress could allow an unauthenticated attacker to install and enable malicious plugins on susceptible sites and potentially achieve remote code execution. The vulnerabilities, tracked as CVE-2024-10542 and CVE-2024-10781, carry a CVSS score of 9.8 out of … Read more
