Security Info Watch

Insider Intelligence: Stop Selling Features and Start Delivering Clarity

As physical security systems grow more complex, the ability to simplify decisions has become the most valuable thing an integrator can offer.

Critical flaw in wolfSSL library enables forged certificate use

A critical vulnerability in the wolfSSL SSL/TLS library can weaken security via improper verification of the hash algorithm ...

The silent “Storm”: New infostealer hijacks sessions, decrypts server-side

New "Storm" infostealer skips local decryption, sending browser data to attacker servers. Varonis shows how server-side decryption enables session hijacking, bypassing passwords and MFA.