Dark Reading

Vulnerability Exploits, Not Phishing, Are the Top Cyberattack Vector for Initial Compromise

Breaches involving phishing and credential compromise have received a lot of attention in recent years because of how frequently threat actors have employed the tactics in executing both targeted and ...
Threat Post

Brand-New Log4Shell Attack Vector Threatens Local Hosts

The discovery, which affects services running as localhost that aren’t exposed to any network or the internet, vastly widens the scope of attack possibilities. Defenders will once again be busy ...
TechSpot

New Log4j attack vector can affect local hosts with no internet access

In context: The past week has kept IT organizations scrambling to respond to the Log4j vulnerability impacting systems around the world. As security experts have continued to identify additional bugs ...
CSOonline

New DDoS amplification vector could enable massive attacks

A vulnerability in the Service Location Protocol on internet-connected devices could create a DDoS amplification factor of up to 2200X. Security researchers sounded the alert about a vulnerability in ...
CSOonline

Cybercriminals switch up their top initial access vectors of choice

Vulnerability exploitation, including attacks on network edge devices, has leapfrogged phishing to become a key factor in many security breaches, according to Verizon’s DBIR. Third-party involvement ...