Laden...
CSO US First Look
The day's top cybersecurity news and in-depth coverage
February 15, 2025
Palo Alto Networks firewall bug being exploited by threat actors: Report
PAN admins urged to block open internet access to firewall management interfaces after discovery of vulnerability.
Read more
CSO Award and Hall of Fame Nominations Open Now
Get recognition for your organizationâs innovations in security. Submit by April 10 to be considered.
whoAMI name confusion attacks can expose AWS accounts to malicious code execution
Due to a misconfiguration, developers could be tricked into retrieving malicious Amazon Machine Images (AMI) while creating EC2 instances.
PostgreSQL patches SQLi vulnerability likely exploited in BeyondTrust attacks
Rapid7 researchers believe the BeyondTrust Remote Support attacks from December also exploited a zero-day flaw in PostgreSQL.
24% of vulnerabilities are abused before a patch is available
Exploited CVEs increased by a fifth in 2024, according to analysis by VulnCheck, with increased transparency and improved monitoring playing a role. Still, proactive measures are vital.
What security teams need to know about the coming demise of old Microsoft servers
While the planned phase-out of Microsoft Exchange 2016 and Exchange 2019 is many months away, evaluate your organizationâs needs now to avoid hassles down the road.
CISA, FBI call software with buffer overflow issues âunforgivableâ
The federal directive forbids vendors from shipping software with such flaws, and flags recent Microsoft, and Ivanti zero-days as examples.
© 2025
