🚨 CISA KEV 1[−]
21 May KEVCISA Warns of Attacks Exploiting NextGen Healthcare Mirth Connect FlawCISA has added CVE-2023-43208, an unauthenticated remote code execution vulnerability, to its KEV catalog. The post CISA Warns of Attacks Exploiting NextGen Healthcare Mirth Connect Flaw appeared first on SecurityWeek .SECURITYWEEK.COM
🐛 COMMON VULNERABILITIES AND EXPOSURES 10[−]
21 MayPoC Exploit Released for QNAP QTS zero-day RCE FlawResearchers have shown a proof-of-concept (PoC) attack for a zero-day remote code execution (RCE) flaw in the QTS operating system from QNAP. Users of QNAP’s Network-Attached Storage (NAS) devices, which are common in both small and big business settings, are in grave dange…GBHACKERS.COM
21 May"Linguistic Lumberjack" Vulnerability Discovered in Popular Logging Utility Fluent BitCybersecurity researchers have discovered a critical security flaw in a popular logging and metrics utility called Fluent Bit that could be exploited to achieve denial-of-service (DoS), information disclosure, or remote code execution. The vulnerability, tracked as …THEHACKERNEWS.COM
21 May KEVNextGen Healthcare Mirth Connect Under Attack - CISA Issues Urgent WarningThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a security flaw impacting NextGen Healthcare Mirth Connect to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The flaw, tracked as CVE-2…THEHACKERNEWS.COM
21 MayFortinet FortiSIEM Command Injection Flaw (CVE-2023-34992) Deep-DiveResearchers at Horizon3.ai discovered a critical remote code execution vulnerability (CVE-2023-34992) in Fortinet FortiSIEM, allowing unauthenticated attackers to execute commands as root users and gain access to sensitive information.HORIZON3.AI
21 MayResearchers Uncover Flaws in Python Package for AI Models and PDF.js Used by FirefoxA critical security flaw has been disclosed in the llama_cpp_python Python package that could be exploited by threat actors to achieve arbitrary code execution. Tracked as CVE-2024-34359 (CVSS score: 9.7), the flaw has been codenamed Llama Drama by software su…THEHACKERNEWS.COM
21 MayPoC exploit for Ivanti EPMM privilege escalation flaw released (CVE 2024-22026)submitted by kid to cybersecurity 1 points | 0 comments https://www.helpnetsecurity.com/2024/05/20/cve-2024-22026-poc/HELPNETSECURITY.COM
21 MayExploiting CVE-2024-32002: RCE via git clonesubmitted by kid to cybersecurity 1 points | 0 comments https://amalmurali.me/posts/git-rce/AMALMURALI.ME
21 MayCritical Memory Corruption In Cloud Logging Infrastructure Enables Code Execution AttackA new critical vulnerability has been discovered in Fluent Bit’s built-in HTTP server, which has been termed “Linguistic Lumberjack” (CVE-2024-4323). Exploiting this vulnerability can also lead to a denial of service, information disclosure, or remote code execu…GBHACKERS.COM
21 MayGitHub warns of SAML auth bypass flaw in Enterprise ServerGitHub has fixed a maximum severity (CVSS v4 score: 10.0) authentication bypass vulnerability tracked as CVE-2024-4986, which impacts GitHub Enterprise Server (GHES) instances using SAML single sign-on (SSO) authentication. [...]BLEEPINGCOMPUTER.COM
21 MayCritical GitHub Enterprise Server Flaw Allows Authentication BypassGitHub has rolled out fixes to address a maximum severity flaw in the GitHub Enterprise Server (GHES) that could allow an attacker to bypass authentication protections. Tracked as CVE-2024-4985 (CVSS score: 10.0), the issue could permit unauthorized access to an instanc…THEHACKERNEWS.COM
⚠️ VULNERABILITY DISCLOSURE 27[−]
21 MayNikesh Arora on Why Palo Alto Networks Is Buying IBM QRadarQRadar SaaS SIEM Customers Will Be Migrated to XSIAM as Part of $500M Transaction IBM and Palo Alto Networks have joined forces to transition QRadar SaaS customers to XSIAM. The $500 million deal will accelerate Palo Alto Networks' platformization journey, and includes additional…DATABREACHTODAY.CO.UK
21 MayEmployee discontent: Insider threat No. 1In the world of insider risk management (IRM), how an employee views their relationship with their company is as important as how the company views its relationship with the employee. This might sound like a simple equation, in which mutual back-scratching and support equal succe…CSOONLINE.COM
21 MayRSAC Fireside Chat: IRONSCALES utilizes LLM, superior intel to stay a step ahead of Deep FakesThere was a lot of buzz at RSAC 2024 about how GenAI and Large Language Models (LLM) are getting leveraged — by both attackers and defenders. Related: Is your company moving too slow or too fast on GenAI? One promising … (more…) The post RSAC Fireside Chat: IRONSCALES…LASTWATCHDOG.COM
21 MayGrandoreiro Malware Hijacks Outlook Client to Send Phishing EmailsX-Force identified a phishing campaign targeting Latin American users since March 2024, where emails impersonate legitimate entities like tax and utility services, urging recipients to click links for invoices or account statements. Clicking the link redirects users in spec…GBHACKERS.COM
21 MayCritical Memory Corruption In Cloud Logging Infrastructure Enables Code Execution AttackFluent Bit, a widely used open-source data collector and processor, has been found to have a major memory loss flaw. Many big cloud providers use Fluent Bit for their logging because it is easy to use and can be scaled up or down as needed. Tenable Research found the flaw, which …GBHACKERS.COM
21 May'Linguistic Lumberjack' Flaw in Logging Utility Fluent Bit Impacts Cloud ServicesCybersecurity researchers have discovered a critical vulnerability, dubbed "Linguistic Lumberjack," in the popular logging and metrics utility Fluent Bit that could allow for denial-of-service (DoS), information disclosure, or remote code execution.TENABLE.COM
21 May KEVCISA Warns of Actively Exploited NextGen Mirth Connect Pre-Auth RCE VulnerabilityThe CISA has required federal agencies to update to a patched version of Mirth Connect (version 4.4.1 or later) by June 10, 2024, to secure their networks against active threats.HORIZON3.AI
21 MayDetecting Malicious TrackersFrom Slashdot : Apple and Google have launched a new industry standard called “ Detecting Unwanted Location Trackers ” to combat the misuse of Bluetooth trackers for stalking . Starting Monday, iPhone and Android users will receive alerts when an unknown Bluetooth dev…SCHNEIER.COM
21 MayEPA Issues Alert After Finding Critical Vulnerabilities in Drinking Water SystemsThe EPA has issued an enforcement alert, outlining the steps needed to comply with the Safe Drinking Water Act. The post EPA Issues Alert After Finding Critical Vulnerabilities in Drinking Water Systems appeared first on SecurityWeek .SECURITYWEEK.COM
21 MayCritical Bug Allows DoS, RCE, Data Leaks in All Major Cloud Platformssubmitted by kid to cybersecurity 1 points | 0 comments https://www.darkreading.com/cloud-security/critical-bug-dos-rce-data-leaks-in-all-major-cloud-platformsDARKREADING.COM
21 MayQNAP QTS Zero-Day in Share Feature Gets Public RCE ExploitAn extensive security audit of QNAP QTS, the operating system for the company's NAS products, has uncovered fifteen vulnerabilities of varying severity, with eleven remaining unfixed.BLEEPINGCOMPUTER.COM
21 MayNew ‘Siren’ Mailing List Aims to Share Threat Intelligence for Open Source ProjectsThe Open Source Security Foundation (OpenSSF) announced a new email mailing list named Siren that aims to spread threat intelligence related to open-source projects. It will be publicly viewable and will only require registration to post on the list.THERECORD.MEDIA
21 MayNorth Korean Hackers Hijacked Military Officials Personal EmailNorth Korean hacking groups are suspected of hijacking the personal email accounts of high-ranking military officials. The Defense Ministry confirmed that a joint investigation is underway, involving both the police and military police. A dedicated task force has been established…GBHACKERS.COM
21 MaySolarMarker Malware Evolves to Resist Takedown Attempts with Multi-Tiered InfrastructureThe persistent threat actors behind the SolarMarker information-stealing malware have established a multi-tiered infrastructure to complicate law enforcement takedown efforts, new findings from Recorded Future show. "The core of SolarMarker's operations is its layered i…THEHACKERNEWS.COM
21 MayUnpacking XDR & Business Applications - Chris Thomas, Oliver Tavakoli - ASW #286The challenge of evaluating threat alerts in aggregate – what a collection and sequence of threat signals tell us about an attacker’s sophistication and motives – has bedeviled SOC teams since the dawn of the Iron Age. Vectra AI CTO Oliver Tavakoli will discuss how the design pri…YOUTUBE.COM
21 MayNode.js Secure Coding - Liran Tal - ASW #286Secure coding education should be more than a list of issues or repeating generic advice. Liran Tal explains his approach to teaching developers through examples that start with exploiting known vulns and end with discussions on possible fixes. Not only does this create a more en…YOUTUBE.COM
21 MayMalware Delivery via Cloud Services Exploits Unicode Trick to Deceive UsersA new attack campaign dubbed CLOUD#REVERSER has been observed leveraging legitimate cloud storage services like Google Drive and Dropbox to stage malicious payloads. "The VBScript and PowerShell scripts in the CLOUD#REVERSER inherently involves command-and-control-like …THEHACKERNEWS.COM
21 MayCISA Releases One Industrial Control Systems AdvisoryCISA released one Industrial Control Systems (ICS) advisory on May 21, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-142-01 LCDS LAquis SCADA CISA encourages users and administrators to revi…CISA.GOV
21 MayAudit of Kuksa, the open-source shared building blocks for Software Defined VehiclesEclipse KUKSA's committers, with support from Eclipse Foundation , engaged with Quarkslab to perform an audit of Kuksa, an open-source framework that provides shared building blocks for Software Defined Vehicles. The goal of the audit was to assist the Eclipse Kuksa committers to…QUARKSLAB.COM
21 MayQNAP Rushes Patch for Code Execution Flaw in NAS DevicesQNAP rolls out patches for multiple vulnerabilities after proof-of-concept exploit published for a remote code execution vulnerability. The post QNAP Rushes Patch for Code Execution Flaw in NAS Devices appeared first on SecurityWeek .SECURITYWEEK.COM
21 MayMemcyco Report Reveals Only 6% Of Brands Can Protect Their Customers From Digital Impersonation FraudMemcyco Inc., provider of digital trust technology designed to protect companies and their customers from digital impersonation fraud, released its inaugural 2024 State of Website Impersonation Scams report. Notably, Memcyco’s research indicates that the majority of companies do …CSOONLINE.COM
21 May KEVKevin Mandia Exits Mandiant CEO Role After Google PurchaseSandra Joyce, Jurgen Kutscher to Oversee Mandiant Threat Intel, IR Business Units Kevin Mandia will vacate the CEO position at his namesake company 20 months after Google bought the threat intelligence and incident response titan. Mandia's May 31 transition into an advisory role …DATABREACHTODAY.CO.UK
21 MayNewly Updated Grandoreiro Banking Trojan Distributed Via Phishing CampaignsResearchers at IBM X-Force are tracking several large phishing campaigns spreading an updated version of the Grandoreiro banking trojan.KNOWBE4.COM
21 MayCISA: NextGen Healthcare Flaw Still Exploited After 7 MonthsAttackers Are Targeting the Widely Used Mirth Connect Data Integration Platform Cyberattackers are actively exploiting a vulnerability in the NextGen Healthcare Mirth Connect product, an open-source data integration platform widely used by healthcare companies, said CISA in an al…DATABREACHTODAY.CO.UK
21 MayVeeam warns of critical Backup Enterprise Manager auth bypass bugVeeam warned customers today to patch a critical security vulnerability that allows unauthenticated attackers to sign into any account via the Veeam Backup Enterprise Manager (VBEM). [...]BLEEPINGCOMPUTER.COM
21 MayBack to Cooking: Detection Engineer vs Detection Consumer, Again?This is not a blog about the recent upheaval in the magical realm of SIEM. We have a perfectly good podcast / video about it (complete with hi-la-ri-ous XDR jokes, both human and AI created). This is about something that bothered me for a long time (since my Gartner days ) and I …MEDIUM.COM
📢 SECURITY ADVISORIES 10[−]
21 MayStreamlining IT Security Compliance Using the Wazuh FIM CapabilityFile Integrity Monitoring (FIM) is an IT security control that monitors and detects file changes in computer systems. It helps organizations audit important files and system configurations by routinely scanning and verifying their integrity. Most information security standards ma…THEHACKERNEWS.COM
21 MayRockwell Automation Encourages Customers to Assess and Secure Public-Internet-Exposed AssetsRockwell Automation has released guidance encouraging users to remove connectivity on all Industrial Control Systems (ICS) devices connected to the public-facing internet to reduce exposure to unauthorized or malicious cyber activity. Users and administrators are encouraged…CISA.GOV
21 MaySnapchat Revises AI Privacy Policy Following UK ICO ProbeICO Urges Companies to Assess Data Protection Before Releasing Products Instant messaging app Snapchat brought its artificial intelligence-powered tool under compliance after the U.K. data regulator said it violated the privacy rights of individual Snapchat users. The agency conc…DATABREACHTODAY.CO.UK
21 MayAchieve security compliance with Wazuh File Integrity MonitoringFile Integrity Monitoring (FIM) is an IT security control that monitors and detects file changes in computer systems. It helps organizations audit important files and system configurations by routinely scanning and verifying their integrity. Most information security standards ma…THEHACKERNEWS.COM
🔥 INCIDENT REPORTING 12[−]
21 MayCybercriminals Shift Tactics to Pressure More Victims Into Paying RansomsCybercriminals' new tactics led to a 64% increase in ransomware claims in 2023, driven by a 415% rise in "indirect" incidents and remote access vulnerabilities, pressuring more victims to pay ransoms, according to At-Bay.HELPNETSECURITY.COM
21 MayOmniVision Says Personal Information Stolen in Ransomware AttackSemiconductor giant OmniVision Technologies says personal information was stolen in a September 2023 ransomware attack. The post OmniVision Says Personal Information Stolen in Ransomware Attack appeared first on SecurityWeek .SECURITYWEEK.COM
21 MayHave I Been Pwned Employee 1.0: Stefán Jökull SigurðarsonPresently sponsored by: Report URI: Guarding you from rogue JavaScript! Don’t get pwned; get real-time alerts & prevent breaches #SecureYourSite We often do that in this industry, the whole "1.0" thing, but it seems apt here. I started Have I Been Pwned (HIBP) in 2013 a…TROYHUNT.COM
21 MayCyberheistNews Vol 14 #21 How Come Unknown Attack Vectors Are Surging in Ransomware Infections?KNOWBE4.COM
21 MayConservative cell carrier Patriot Mobile hit by data breachU.S. cell carrier Patriot Mobile experienced a data breach that included subscribers’ personal information, including full names, email addresses, home zip codes, and account PINs, TechCrunch has learned. Patriot Mobile, which reportedly has fewer than 100,000 subscribers, bills …TECHCRUNCH.COM
21 MayAtlassian Bitbucket artifacts can leak plaintext auth secretsThreat actors were found breaching AWS accounts using authentication secrets leaked as plaintext in Atlassian Bitbucket artifact objects. [...]BLEEPINGCOMPUTER.COM
21 MayWestern Sydney University data breach exposed student dataWestern Sydney University (WSU) has notified students and academic staff about a data breach after threat actors breached its Microsoft 365 and Sharepoint environment. [...]BLEEPINGCOMPUTER.COM
21 MayCyber Insurance Claims Rise Due To Phishing and Social Engineering Cyber AttacksNew data covering cyber insurance claims through 2023 shows claims have increased while reaffirming what we already know: phishing and social engineering are the real problem.KNOWBE4.COM
21 MayBitbucket artifact files can leak plaintext authentication secretsThreat actors were found breaching AWS accounts using authentication secrets leaked as plaintext in Atlassian Bitbucket artifact objects. [...]BLEEPINGCOMPUTER.COM
21 MayGoogle Urges Feds to Ditch Microsoft Over Security ConcernsTechnology Giants Vie for Public Sector Customers Amid Microsoft's Recent Breaches Google is aiming to poach Microsoft's public sector customers by attacking its competitor over recent high-profile breaches and offering new incentives for federal agencies to reduce the U.S. gover…DATABREACHTODAY.CO.UK
21 MayLockBit says they stole data in London Drugs ransomware attackToday, the LockBit ransomware gang claimed they were behind the April cyberattack on Canadian pharmacy chain London Drugs and is now threatening to publish stolen data online after allegedly failed negotiations. [...]BLEEPINGCOMPUTER.COM
21 May100 Groups Urge Feds to Put UHG on Hook for Breach NoticesMedical Associations Ask HHS to Clarify HIPAA Duties in Change Healthcare Hack More than 100 medical associations and industry groups representing tens of thousands of U.S. doctors and healthcare professionals have banded together to urge federal regulators to hold Change Healthc…DATABREACHTODAY.CO.UK
🕵️ THREAT INTELLIGENCE 20[−]
21 MayISC Stormcast For Tuesday, May 21st, 2024 https://isc.sans.edu/podcastdetail/8990, (Tue, May 21st)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
21 MayNorth Korea-Linked Kimsuky APT Attack Targets Victims via MessengerResearchers at Genians Security Center (GSC) identified the North Korea-linked Kimsuky APT group targeting victims via Facebook Messenger, using fake accounts posing as South Korean officials to deliver malware.SECURITYAFFAIRS.COM
21 MayMultiple Vulnerabilities in Honeywell VirtualUOC Let Attackers Execute Remote CodeTeam82 has uncovered multiple critical vulnerabilities in Honeywell’s ControlEdge Virtual Unit Operations Center (UOC). These vulnerabilities within the EpicMo protocol implementation could potentially allow attackers to execute remote code without authentication. Honeywell…GBHACKERS.COM
21 MayInsider Q&A: CIA’s Chief Technologist’s Cautious Embrace of Generative AICIA Director William Burns says AI tech will augment humans, not replace them. The agency’s first chief technology officer, Nand Mulchandani, is marshaling the tools. The post Insider Q&A: CIA’s Chief Technologist’s Cautious Embrace of Generative AI appeared first on Security…SECURITYWEEK.COM
21 MayHacktivist Groups Target Indian Elections, Leak Personal Data, Says Reportsubmitted by kid to cybersecurity 1 points | 0 comments https://www.hackread.com/hacktivist-indian-elections-leak-personal-data/HACKREAD.COM
21 MayBad Karma, No Justice: Void Manticore Destructive Activities in Israelsubmitted by kid to cybersecurity 1 points | 0 comments https://research.checkpoint.com/2024/bad-karma-no-justice-void-manticore-destructive-activities-in-israel/RESEARCH.CHECKPOINT.COM
21 MayMicrosoft Unveild New Windows 11 Features To Strengthen SecurityMicrosoft has been prioritizing security in Windows, as they introduced Secured-Core PCs to protect from hardware to cloud attacks and expanded passwordless offerings with passkeys for better identity protection. Passkeys are protected by Windows Hello technology, and to fu…GBHACKERS.COM
21 MayWorking in the security clearance world: How security clearances impact jobsWe recently published an article about the importance of security clearances for roles across various sectors, particularly those associated with national security and defense. But obtaining a clearance is only part of the journey. Maintaining and potentially expanding your clear…SECURITYINTELLIGENCE.COM
21 MayScanning without Scanning with NMAP (APIs FTW), (Tue, May 21st)A year ago I wrote up using Shodan&#;x26;#;39;s API to collect info on open ports and services without actually scanning for them ( Shodan&#;x26;#;39;s API for the (Recon) Win! ). This past week I was trolling through t…ISC.SANS.EDU
21 MayDoppelGänger Attack: Malware Routed Via News Websites And Social MediaA Russian influence campaign, DoppelGänger, leverages fake news websites (typosquatted and independent) to spread disinformation, undermining support for Ukraine. Structura and SDA are running the campaign, which started in May 2022 and targets France, Germany, and other countrie…GBHACKERS.COM
21 MayNews alert: Memcyco report reveals only 6% of brands can stop digital impersonation fraudNew York, NY, May 21, 2024, CyberNewsWire — Memcyco Inc., provider of digital trust technology designed to protect companies and their customers from digital impersonation fraud, released its inaugural 2024 State of Website Impersonation Scams report. Notably, Memcyco’s res…LASTWATCHDOG.COM
21 MayZoom Adding Post-Quantum End-to-End Encryption to ProductsZoom is announcing post-quantum end-to-end encryption on Meetings, with Phone and Rooms coming soon. The post Zoom Adding Post-Quantum End-to-End Encryption to Products appeared first on SecurityWeek .SECURITYWEEK.COM
21 MayThe Riddle of Data Governance - Steven Fox - CSP #175Data is the fuel of modern organizations. Data governance ensures the quality of that fuel, as well as ensure its optimal utilization. It ensures that people use and access data appropriately. This value is timely in the face of artificial intelligence offerings whose utility rel…YOUTUBE.COM
21 MayMemcyco Report Reveals Only 6% Of Brands Can Protect Their Customers From Digital Impersonation FraudMemcyco Inc., provider of digital trust technology designed to protect companies and their customers from digital impersonation fraud, released its inaugural 2024 State of Website Impersonation Scams report. Notably, Memcyco’s research indicates that the majority of companies do …GBHACKERS.COM
21 MayProwling the Wilds — Upgrade Your SOC and Hunt Down ThreatsSOC leaders need to outfit their analysts with the right gear and training. Upgrade your SOC and analysts to hunt down the threats lurking in your network. The post Prowling the Wilds — Upgrade Your SOC and Hunt Down Threats appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
21 MayArrests made after North Koreans hired for remote tech jobs at US companiesUS businesses are believed to have recruited thousands of North Korean IT workers, sending earnings (and potentially data) to North Korea. Read more in my article on the Hot for Security blog.BITDEFENDER.COM
21 MayIranian State Hackers Partner Up for Large-Scale Attacks, Reportsubmitted by kid to cybersecurity 2 points | 0 comments https://www.hackread.com/iranian-state-hackers-partner-up-for-attacks/HACKREAD.COM
21 MayBig Tech, Fighting a Junta, Keylogger in Microsoft, APT Hackers, Free Laundry, Josh - SWN #388Big Tech, Fighting a Junta, Keylogger in Microsoft , APT Hackers, Free Laundry, Joshua Marpet & more on this edition of the Security Weekly News! Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-388YOUTUBE.COM
21 MayThe Shadow War: Cognitive Warfare and the Politics of DisinformationFor better or for worse, we live in a world that is an anarchy of nations. Over the last few decades, warfare has transcended traditional battlefields. We may already be experiencing a cold World War III, not with bombs and tanks, but through the covert methods of cognitive warfa…KNOWBE4.COM
21 MayAI Companies Make Fresh Safety Promise at Seoul Summit, Nations Agree to Align Work on RisksLeading artificial intelligence companies made pledge to develop AI safely, while world leaders agreed to build a network of publicly backed safety institutes to advance research and testing of the technology. The post AI Companies Make Fresh Safety Promise at Seoul Summit, Natio…SECURITYWEEK.COM
🌐 CYBER THREAT LANDSCAPE 4[−]
21 MayGitCaught Campaign Leverages GitHub Repositories and Fake Profiles for Malicious InfrastructureInsikt Group uncovered a sophisticated campaign led by Russian-speaking actors who used GitHub profiles to spoof legitimate software apps and distribute various malware, including Atomic macOS Stealer (AMOS) and Vidar.RECORDEDFUTURE.COM
21 MayFive Core Tenets Of Highly Effective DevSecOps PracticesOne of the enduring challenges of building modern applications is to make them more secure without disrupting high-velocity DevOps processes or degrading the developer experience. Today’s cyber threat landscape is rife with sophisticated attacks aimed at all different parts of th…THEHACKERNEWS.COM
21 MayRockwell Automation warns admins to take ICS devices offlineRockwell Automation warned customers to disconnect all industrial control systems (ICSs) not designed for online exposure from the Internet due to increasing malicious activity worldwide. [...]BLEEPINGCOMPUTER.COM
📡 INFOSEC NEWS 21[−]
21 MayCyberArk Snaps up Venafi for $1.54B to Ramp up in Machine-to-Machine SecurityThe acquisition will allow CyberArk to expand its capabilities in securing machine-to-machine communications and address the growing attack surface in the cloud-first, AI-driven, and post-quantum world.TECHCRUNCH.COM
21 MayThe Mystery of the Targeted Ad and the Library PatronAn attorney discovered that the mobile ads she saw were reflecting her recent library audiobook borrowing habits, raising concerns about the privacy of library patron data and the potential for targeted advertising based on that information.THEREGISTER.COM
21 MayConsumers Continue to Overestimate Their Ability to Spot DeepfakesThe Jumio 2024 Online Identity Study reveals that while consumers are increasingly concerned about the risks posed by deepfakes and generative AI, they continue to overestimate their ability to detect these deceptions.HELPNETSECURITY.COM
21 MayWindows 11 to Deprecate NTLM, Add AI-Powered App Controls and Security Defenses Microsoft on Monday confirmed its plans to deprecate NT LAN Manager (NTLM) in Windows 11 in the second half of the year, as it announced a slew of new security measures to harden the widely-used desktop operating system. "Deprecating NTLM has been a huge ask from our securi…THEHACKERNEWS.COM
21 MayTraining LLMs: Questions Rise Over AI Auto Opt-In by VendorsFew Restrictions Appear to Exist, Provided Companies Behave Transparently Can individuals' personal data and content be used by artificial intelligence firms to train their large language models, without requiring users to opt in? The answer may vary by geography, but even in Eur…DATABREACHTODAY.CO.UK
21 MayChinese Telco Gear May Get Banned in GermanyGermany is considering banning the use of Huawei and ZTE equipment in its 5G networks due to national security concerns, despite industry opposition and the potential high costs associated with the removal of the Chinese-made technology.THEREGISTER.COM
21 MayVoid Manticore Launches Destructive Attacks on Albania and IsraelVoid Manticore utilizes five different methods to conduct disruptive operations against its victims. This includes several custom wipers for both Windows and Linux, alongside manual deletion of files and shared drives.RESEARCH.CHECKPOINT.COM
21 MayZoom adds post-quantum end-to-end encryption to video meetingsZoom has announced the global availability of post-quantum end-to-end encryption (E2EE) for Zoom Meetings, with Zoom Phone and Zoom Rooms to follow soon. [...]BLEEPINGCOMPUTER.COM
21 MayLive Webinar | Practical Strategies for Accelerating AI Adoption in CybersecurityDATABREACHTODAY.CO.UK
21 MayGoogle rolls out Chrome fix for empty pages when switching tabsGoogle is rolling out a server-side fix for a known issue affecting the Chrome browser that causes webpage content to temporarily disappear when users change between open tabs. [...]BLEEPINGCOMPUTER.COM
21 MayWhy Your Wi-Fi Router Doubles as an Apple AirTagApple and the satellite-based broadband service Starlink each recently took steps to address new research into the potential security and privacy implications of how their services geo-locate devices. Researchers from the University of Maryland say they relied on publicly availab…KREBSONSECURITY.COM
21 MayDid OpenAI Illegally Mimic Scarlett Johansson's Voice?Actor Said She Firmly Declined Offer From AI Firm to Serve as Voice of GPT-4.o Hollywood megastar Scarlett Johansson said a voice built into OpenAI's new GPT-4o is "eerily similar" to her own, despite her declining the company's request to lend it her voice. While AI firms have a…DATABREACHTODAY.CO.UK
21 MayUpdating our SIEM system to version 3.0.3 | Kaspersky official blogWe’ve updated our Kaspersky Unified Monitoring and Analysis Platform with a string of new features for improved UX.KASPERSKY.COM
21 MayHow to Land Your Dream Job in TechTips to Get You to the Place in Your Career Where You Really Want to Be LinkedIn recently released its list of the top companies to work for in 2024. Securing a technical position at a top company requires a strategic approach. Here are some practical tips to help you get started…DATABREACHTODAY.CO.UK
21 MayGhostEngine mining attacks kill EDR security using vulnerable driversA malicious crypto mining campaign codenamed 'REF4578,' has been discovered deploying a malicious payload named GhostEngine that uses vulnerable drivers to turn off security products and deploy an XMRig miner. [...]BLEEPINGCOMPUTER.COM
21 MayUntangling the hiring dilemma: How security solutions free up HR processesThe prerequisites for becoming a security elite create a skills ceiling that is tough to break through – especially when it comes to hiring skilled EDR or XDR operators. How can businesses crack this conundrum?WELIVESECURITY.COM