Please turn JavaScript on
Find more feeds
Qualys Security Blog icon

Qualys Security Blog

Subscribe to Qualys Security Blog’s news feed.

Click on “Follow” and decide if you want to get news from Qualys Security Blog via RSS, as email newsletter, via mobile or on your personal news page.

Subscription to Qualys Security Blog comes without risk as you can unsubscribe instantly at any time.

You can also filter the feed to your needs via topics and keywords so that you only receive the news from Qualys Security Blog which you are really interested in. Click on the blue “Filter” button below to get started.

Website title: Qualys Security Blog | Expert network security guidance and news

Is this your feed? Claim it!

Publisher:  Unclaimed!
Message frequency:  0.44 / day

Message History

From Operating Model to Product: How We Built the ROC for Detection-Speed Remediation

In the first article in this series, we made the case for a prevention-led operating model. This article is about what happened next: the decision to build something that did not exist, and what it took to make it...


Read full story
Stop Patching at Human Speed: Peer-to-Peer (P2P) Distribution Closes the Remediation Gap Before Attackers Strike 
Executive Summary

Knowing what’s exploitable is only half the battle. P2P patch distribution turns your endpoints into a delivery network, cutting patch propagation by up to 92%, reducing WAN bandwidth by 99%+, and helping close critical vulnerabilities before attackers can move. Available now in Qualys Cloud Agent for Windows 6.5.

The Remediation...

Read full story
The HazyBeacon Protocol – How Malware Weaponizes Amazon Web Services (AWS) Lambda Function URLs
Key Takeaways HazyBeacon (CL-STA-1020) targets Southeast Asian government networks by abusing AWS Lambda Function URLs configured with AuthType: NONE as stealth command-and-control relays. Attackers use stolen IAM credentials to deploy Lambda functions that proxy malware communications through trusted AWS domains. Organizations can red...

Read full story
Extending EOL/EOS Software Intelligence Across Containers, Kubernetes, and Modern Workloads
Key Takeaways Unsupported software increasingly exists inside container images and Kubernetes workloads, not just traditional infrastructure. Lifecycle risk extends beyond CVEs because unsupported software eventually stops receiving patches and vendor maintenance. Outdated base images and runtimes can spread rapidly across cloud-native environments before exposure is...

Read full story
CVE-2026-46333: Local Root Privilege Escalation and Credential Disclosure in the Linux Kernel ptrace Path

The Qualys Threat Research Unit (TRU) has discovered and published the full advisory for CVE-2026-46333, a logic flaw in the Linux kernel’s __ptrace_may_access() function that permits an unprivileged local user to disclose sensitive files and execute arbitrary commands as root on default inst...


Read full story