2023 Related Topics 
Krebs on Security
NOVEMBER 14, 2023
The zero-day threats targeting Microsoft this month include CVE-2023-36025 , a weakness that allows malicious content to bypass the Windows SmartScreen Security feature. Microsoft says it is relatively straightforward for attackers to exploit CVE-2023-36036 as a way to elevate their privileges on a compromised PC.
Krebs on Security
DECEMBER 12, 2023
The final Patch Tuesday of 2023 is upon us, with Microsoft Corp. Among the critical bugs quashed this month is CVE-2023-35628 , a weakness present in Windows 10 and later versions, as well as Microsoft Server 2008 and later. For example, CVE-2023-35636 , which Microsoft says is an information disclosure vulnerability in Outlook.
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
Schneier on Security
APRIL 9, 2024
US Cyber Safety Review Board released a report on the summer 2023 hack of Microsoft Exchange by China. It was a serious attack by the Chinese government that accessed the emails of senior U.S. government officials. From the executive summary: The Board finds that this intrusion was preventable and should never have occurred.
Krebs on Security
OCTOBER 10, 2023
The patch fixes CVE-2023-42724 , which attackers have been using in targeted attacks to elevate their access on a local device. Apple said it also patched CVE-2023-5217 , which is not listed as a zero-day bug. ” Microsoft also patched zero-day bugs in Skype for Business ( CVE-2023-41763 ) and Wordpad ( CVE-2023-36563 ).
Advertisement
The losses companies suffered in 2023 ransomware attacks increased by 74% compared to those of the previous year, according to new data from the Federal Bureau of Investigation (FBI). In this eBook, we will look at the 2023 report and explore the most important cybersecurity stats and how to prevent them.
Schneier on Security
MARCH 22, 2024
The highest reward for a vulnerability report in 2023 was $113,337, while the total tally since the program’s launch in 2010 has reached $59 million. BleepingComputer has the details. It’s $2M less than in 2022, but it’s still a lot. million.
Lohrman on Security
DECEMBER 3, 2023
There are several cybersecurity trends that truly deserve top attention when we look back at 2023 — and they will get it. Meanwhile, cyber attacks against critical infrastructure quietly grow, despite a lack of major attention.
Advertisement
We’ve recently looked back at what happened within cybersecurity in 2023. Add to that hacktivism due to global conflicts and U.S. elections, and an increased focus on AI, and you have the perfect recipe for a knotty and turbulent 2024.
Speaker: Elizabeth "Paige" Baumann, Founder and CEO of Paige Baumann Advisory, LLC
March 22nd, 2023 at 9:30 am PDT, 12:30 pm EDT, 4:30 pm GMT Treasury’s Financial Crimes Enforcement Network (FinCEN) pursuant to the AMLA so far Anticipated impacts of the AMLA to financial institutions required to have AML programs and other entities Save your seat and register today!
Speaker: Alex Jiménez, Managing Principal, Financial Service Consulting for EPAM
April 19th, 2023 at 9:30 am PDT, 12:30 pm EDT, 4:30 pm GMT
Speaker: Dr. Karen Hardy, CEO and Chief Risk Officer of Strategic Leadership Advisors LLC
July 13th, 2023 at 9:30am PDT, 12:30pm EDT, 5:30pm BST
Speaker: Erika R. Bales, Esq.
August 23, 2023 at 9:30am PDT, 12:30pm EDT, 5:30pm BST Bales, Esq. is here to teach you: How to break compliance and security down into discrete components Tips and strategies to establish a functional compliance and security protocol for your organization Why compliance and security are moving targets - your job is never “done” And more!
Speaker: William Hord, Senior VP of Risk & Professional Services
July 20th, 2023 at 9:30am PDT, 12:30pm EDT, 5:30pm BST This exclusive webinar with William Hord, Senior VP of Risk & Professional Services, will explore the answers to these questions and other foundational elements you need to start or validate your ERM program. Register today!
Speaker: Ryan McInerny, CAMS, FRM, MSBA - Principal, Product Strategy
May 18th, 2023 at 9:30 am PDT, 12:30 pm EDT, 5:30 pm BST
Speaker: Blackberry, OSS Consultants, & Revenera
November 14th, 2023 at 9:30am PST, 12:30pm EST, 5:30pm GMT In this exclusive webinar with industry visionaries, you'll learn: The value of Software Composition Analysis Regulations impacting both software producers and buyers What a Software Bill of Materials is and why you need one Software supply chain security best practices.and more!
Expert insights. Personalized for you.
234 
Let's personalize your content