95Articles
10Categories
2024-07-17Date
🚨 CISA KEV 2[−]
17 Jul KEVCISA Adds Three Known Exploited Vulnerabilities to CatalogCISA has added three new vulnerabilities to its  Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2024-34102 Adobe Commerce and Magento Open Source Improper Restriction of XML External Entity Reference (XXE) Vulnerability CVE-2024-28995…CISA.GOV
17 Jul KEVIntroducing Full Content Inspection: The New Standard in Network Security, and Why it’s NecessaryNetwork security controls are no longer reliable or sufficient. They are easily evaded, prone to false positives, and feed a costly ecosystem of alert management and incident response. According to pen testing by Positive Technologies, an external attacker can breach an organizat…CSOONLINE.COM
🐛 COMMON VULNERABILITIES AND EXPOSURES 6[−]
17 JulCritical Apache HugeGraph Vulnerability Under Attack - Patch ASAPThreat actors are actively exploiting a recently disclosed critical security flaw impacting Apache HugeGraph-Server that could lead to remote code execution attacks. Tracked as CVE-2024-27348 (CVSS score: 9.8), the vulnerability impacts all versions of the software before 1.3.0. …THEHACKERNEWS.COM
17 JulThe Potential Impact of the OpenSSH Vulnerabilities CVE-2024–6387 and CVE-2024-6409We check the OpenSSH vulnerabilities CVE-2024–6387 and CVE-2024-6409, examining their potential real-world impact and the possibility of exploitation for CVE-2024–6387 in x64 systems.TRENDMICRO.COM
17 JulAPT exploits Windows zero-day to launch zombie IE attackAn APT group has been exploiting a Windows vulnerability patched last week to trick users into downloading malicious files by unwittingly opening URLs in the retired Internet Explorer browser. The attack chain deploys information stealing malware and has been in use since May, wh…CSOONLINE.COM
17 Jul KEVApache HugeGraph Vulnerability Exploited in WildA recently patched Apache HugeGraph-Server vulnerability tracked as CVE-2024-27348 is being targeted in attacks. The post Apache HugeGraph Vulnerability Exploited in Wild appeared first on SecurityWeek .SECURITYWEEK.COM
17 JulVoid Banshee APT exploited "lingering Windows relic" in zero-day attackssubmitted by kid to cybersecurity 1 points | 0 comments https://www.helpnetsecurity.com/2024/07/16/cve-2024-38112-void-banshee/HELPNETSECURITY.COM
17 JulCVE-2024-38156 Microsoft Edge (Chromium-based) Spoofing VulnerabilityInformation published.MSRC.MICROSOFT.COM
⚠️ VULNERABILITY DISCLOSURE 13[−]
17 JulMicrosoft's Bug Reporting Criticized, Disney Hacked, and Kaspersky Exits US. Cyber Security Today Special Edition from Hashtag TrendingWith Howard away and today's episode of Hashtag Trending being all about security stories, I took the liberty of doing a cross posting. Hope we'll have Howard back next week. In today's episode of Hashtag Trending, host Jim Love covers significant cybersecurity news. Microsoft fa…CYBERSECURITYTODAY.LIBSYN.COM
17 JulSometimes the cybersecurity tech industry is its own worst enemyOne of the fundamental infosec problems facing most organizations is that strong cybersecurity depends on an army of disconnected tools and technologies. That’s nothing new — we’ve been talking about this for years. But it’s still omnipresent. Take cyber risk management for examp…CSOONLINE.COM
17 JulScattered Spider Adopts RansomHub and Qilin Ransomware for Cyber AttacksThe infamous cybercrime group known as Scattered Spider has incorporated ransomware strains such as RansomHub and Qilin into its arsenal, Microsoft has revealed. Scattered Spider is the designation given to a threat actor that's known for its sophisticated social engineering sche…THEHACKERNEWS.COM
17 JulKubernetes Exposed: Exploiting the Kubelet APIReal-world attacks have been observed where attackers target the Kubelet API to steal secrets and gain control over clusters. Various techniques, such as environment discovery, network scanning, and secrets collection, have been utilized by hackers.AQUASEC.COM
17 JulBeware! of New Phishing Tactics Mimic as HR Attacking EmployeesPhishing attacks are becoming increasingly sophisticated, and the latest strategy targeting employees highlights this evolution. This new phishing attempt impersonates a company’s Human Resources (HR) department, presenting a significant threat to corporate security. In this arti…GBHACKERS.COM
17 JulKaspersky to Quit US This WeekendKaspersky, the Russian cybersecurity vendor, is winding down its operations in the US due to a Commerce Department decision prohibiting the sale of its products and services in the country.INFOSECURITY-MAGAZINE.COM
17 JulReport: Nearly One in Three Software Development Professionals Unaware of Secure PracticesOne-third of software development professionals lack awareness of secure practices, according to a report by the Linux Foundation and the Open Source Security Foundation.CYBERSECURITYDIVE.COM
17 JulWP Time Capsule Plugin Update Urged After Critical Security FlawBy exploiting this flaw, attackers could bypass critical authentication checks, manipulating JSON-encoded POST data to elevate their privileges and effectively log in as site administrators.INFOSECURITY-MAGAZINE.COM
17 JulCloudflare Reports that Almost 7% of All Internet Traffic Is Malicious6.8% , to be precise. From ZDNet : However, Distributed Denial of Service (DDoS) attacks continue to be cybercriminals’ weapon of choice, making up over 37% of all mitigated traffic. The scale of these attacks is staggering. In the first quarter of 2024 alone, Cloudflare bl…SCHNEIER.COM
17 JulCisco SSM On-Prem bug lets hackers change any user's passwordCisco has fixed a maximum severity vulnerability that allows attackers to change any user's password on vulnerable Cisco Smart Software Manager On-Prem (Cisco SSM On-Prem) license servers, including administrators. [...]BLEEPINGCOMPUTER.COM
17 JulAqua Security Lays Off 10% of Workforce Amid CNAPP Upheaval2nd Round of Layoffs Since 2022 Comes Amid Expected Exits by Rivals Lacework, Wiz Aqua Security carried out its second round of layoffs since 2022 as the future prospects for stand-alone cloud security vendors look increasingly uncertain. Aqua said axing 10% of its workforce will…DATABREACHTODAY.CO.UK
17 JulEPSS - The Exploit Prediction Scoring System - Jay Jacobs, Wade Baker - BTS #34Jay Jacobs Co-Founder and Data Scientist and Wade Baker Co-Founder; Data Storyteller from The Cyentia Institute come on the show to talk about The Exploit Prediction Scoring System (EPSS). This segment is sponsored by Eclypsium. Visit https://securityweekly.com/eclypsium to learn…YOUTUBE.COM
17 JulVulnerability in Cisco Smart Software Manager lets attackers change any user passwordsubmitted by return2ozma to cybersecurity 3 points | 1 comments https://arstechnica.com/security/2024/07/vulnerability-in-cisco-smart-software-manager-lets-attackers-change-any-user-password/ARSTECHNICA.COM
📋 SECURITY BULLETINS 2[−]
17 JulChrome 126 Updates Patch High-Severity VulnerabilitiesChrome 126 security updates released this week resolve high-severity vulnerabilities reported by external researchers. The post Chrome 126 Updates Patch High-Severity Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
17 JulFirmware Update Hides Bluetooth FingerprintsA team of researchers from the University of California San Diego has developed a firmware update to hide a smartphone's unique Bluetooth fingerprint, which can be used to track the user.HELPNETSECURITY.COM
📢 SECURITY ADVISORIES 11[−]
17 JulJPCERT/CC Warns of MirrorFace Attacks Against Japanese OrganizationsInitially, the targets of MirrorFace were media, political organizations, think tanks, and universities, but by 2023, the focus shifted to manufacturers and research institutions.BLOGS.JPCERT.OR.JP
17 Jul5 steps to automate user access reviews and simplify IT complianceWhile SaaS tools are a boon for worker productivity, they introduce complexity when it comes to IT audits and compliance. Learn more from Nudge Security about automating user access reviews to simplify this process. [...]BLEEPINGCOMPUTER.COM
17 JulCISA Appoints New Cybersecurity, Stakeholder Group LeadersJeff Greene, Trent Frazier to Fill Critical Incident Response, Collaborative Roles The Cybersecurity and Infrastructure Security Agency announced Thursday it has appointed two new leaders with extensive public-private sector cybersecurity experience to serve in critical roles lea…DATABREACHTODAY.CO.UK
🔥 INCIDENT REPORTING 20[−]
17 JulUnitedHealth Sticks to 2024 Outlook Despite Strong Quarter With Costs From Massive Cyberattack HighUnitedHealth booked $1.1 billion in total costs from the cyberattack in the second quarter. The post UnitedHealth Sticks to 2024 Outlook Despite Strong Quarter With Costs From Massive Cyberattack High appeared first on SecurityWeek .SECURITYWEEK.COM
17 JulRite Aid Says Hack Impacts 2.2M People as Ransomware Gang Threatens to Leak DataPharmacy chain Rite Aid says 2.2 million people are impacted by a recent data breach for which the RansomHub group has taken credit. The post Rite Aid Says Hack Impacts 2.2M People as Ransomware Gang Threatens to Leak Data appeared first on SecurityWeek .SECURITYWEEK.COM
17 JulRansomware Leak Site Posts Jumped 20% in Q2According to Reliaquest, ransomware incidents surged in Q2, with 1,237 organizations listed on data leak sites, a 20% increase from Q1. U.S. businesses were hit the hardest, accounting for over half of the victims.CYBERSECURITYDIVE.COM
17 JulChange Healthcare's Breach Costs Could Reach $2.5 BillionCosts Have Already Hit $2 Billion, Parent Company UnitedHealth Group Reports Fallout from the February ransomware hit on Change Healthcare, including the theft of data pertaining to up to one-third of Americans, has so far led to $2 billion in costs and may yet reach $2.5 billion…DATABREACHTODAY.CO.UK
17 JulMNGI Digestive Health Data Breach Impacts 765,000 IndividualsMNGI Digestive Health tells the Maine AGO that hackers accessed the personal information of 765,000 individuals. The post MNGI Digestive Health Data Breach Impacts 765,000 Individuals appeared first on SecurityWeek .SECURITYWEEK.COM
17 JulVirtual Event Today: Cloud & Data Security Summit | 2024Join us as we explore the latest trends in the world of SaaS security, cyberattacks against cloud infrastructure, data security posture management (DSPM), and the hype and promise of AI and LLM technologies. The post Virtual Event Today: Cloud & Data Security Summit | 2024 ap…SECURITYWEEK.COM
17 JulFIN7 Group Advertises Security-Bypassing Tool on Dark Web ForumsThe financially motivated threat actor known as FIN7 has been observed using multiple pseudonyms across several underground forums to likely advertise a tool known to be used by ransomware groups like Black Basta. "AvNeutralizer (aka AuKill), a highly specialized tool developed b…THEHACKERNEWS.COM
17 JulRansomware Attack Disrupts Bassett Furniture Manufacturing FacilitiesFurniture manufacturer Bassett Furniture was recently targeted in a ransomware attack that resulted in a shutdown of manufacturing facilities. The post Ransomware Attack Disrupts Bassett Furniture Manufacturing Facilities appeared first on SecurityWeek .SECURITYWEEK.COM
17 JulRite Aid breach exposes 2.2 million customer recordssubmitted by higgsboson to cybersecurity 4 points | 1 comments https://arstechnica.com/security/2024/07/rite-aid-says-breach-exposes-sensitive-details-of-2-2-million-customers/ARSTECHNICA.COM
17 JulYacht giant MarineMax data breach impacts 123,000 individualsMarineMax, self-described as the world's largest recreational boat and yacht retailer, is notifying over 123,000 customers whose personal information was stolen in a March security breach claimed by the Rhysida ransomware gang. [...]BLEEPINGCOMPUTER.COM
17 JulYacht giant MarineMax data breach impacts over 123,000 peopleMarineMax, self-described as the world's largest recreational boat and yacht retailer, is notifying over 123,000 customers whose personal information was stolen in a March security breach claimed by the Rhysida ransomware gang. [...]BLEEPINGCOMPUTER.COM
17 JulHardBit ransomware – what you need to knowA new strain of the HardBit ransomware has emerged in the wild, which contains a protection mechanism in an attempt to prevent analysis from security researchers. Read more in my article on the Tripwire State of Security blog.TRIPWIRE.COM
17 JulVolcano Demon Group Attacking Organizations With LukaLocker RansomwareThe Volcano Demon group has been discovered spreading a new ransomware called LukaLocker, which targets Idealease Inc., a truck leasing company. The malware targets several security, monitoring, and backup services, including antivirus software like Trend Micro, Malware Bytes, So…GBHACKERS.COM
17 JulNew AI System Shields Virtual Power Plants From CyberattacksGerman Government-Funded Detection System Stops Attacks at Individual Facilities A new artificial intelligence-based protection system developed by the German government-funded SecDER project is revolutionizing the security of virtual power plants by detecting cyberattacks and pr…DATABREACHTODAY.CO.UK
17 JulUK ICO Reprimands London Hackney Council for 2020 HackAn 'Avoidable Error' Enabled Pysa Ransomware Group to Encrypt 440,000 Files The U.K.'s data watchdog on Wednesday reprimanded London's Hackney Council over its failure to protect the data of nearly 280,000 town residents from a ransomware hack that resulted in attackers leaking s…DATABREACHTODAY.CO.UK
17 JulUK Labour Introduces Cyber Security and Resilience BillBill Gives Regulators Broader Powers, Seeks to Improve UK Cyber Preparedness In its initial legislative agenda, the United Kingdom's newly elected Labour government has introduced a new cybersecurity bill in a bid to address rising cyberthreats to the country. The bill seeks to r…DATABREACHTODAY.CO.UK
17 JulNew Ransomware Threat Group Calls Attack Victims to Ensure PaymentsAnalysis of new ransomware group Volcano Demon provides a detailed look into how and why calling victims ups the chances of ransomware payment.KNOWBE4.COM
17 Jul[NEW FREE TOOL]: Reveal Your Network's Hidden Weaknesses with KnowBe4's BreachSim Data Exfiltration SimulatorAs cyber threats evolve, the target has become crystal clear: your data.  A staggering 90% of ransomware attacks now include a data exfiltration component. With this in mind, KnowBe4 has introduced a robust free tool, BreachSim, to identify your network's vulnerabilities and…KNOWBE4.COM
17 JulThe State of Ransomware in Critical Infrastructure 2024275 IT/cybersecurity leaders from the energy, oil/gas and utilities sector share their ransomware experiences, providing new insights into the business impact of ransomware.SOPHOS.COM
🕵️ THREAT INTELLIGENCE 22[−]
17 JulWho You Gonna Call? AndroxGh0st Busters! [Guest Diary], (Tue, Jul 16th)[This is a Guest Diary by Michael Gallant, an ISC intern as part of the SANS.edu BACS program] ISC.SANS.EDU
17 JulNATO to Establish New Cyber Center in BelgiumNATO will establish a new cyber center to better protect against increasingly sophisticated cyber threats. The post NATO to Establish New Cyber Center in Belgium appeared first on SecurityWeek .SECURITYWEEK.COM
17 JulISC Stormcast For Wednesday, July 17th, 2024 https://isc.sans.edu/podcastdetail/9056, (Wed, Jul 17th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
17 JulGUEST ESSAY: Consumers, institutions continue to shoulder burden for making mobile banking secureThe rapid adoption of mobile banking has revolutionized how we manage our finances. Related: Deepfakes aimed at mobile banking apps With millions of users worldwide relying on mobile apps for their banking needs, the convenience is undeniable. However, this surge … (more…) …LASTWATCHDOG.COM
17 JulChina-linked APT17 Targets Italian Companies with 9002 RAT MalwareA China-linked threat actor called APT17 has been observed targeting Italian companies and government entities using a variant of a known malware referred to as 9002 RAT. The two targeted attacks took place on June 24 and July 2, 2024, Italian cybersecurity company TG Soft said i…THEHACKERNEWS.COM
17 JulChatGPTriage: How can CISOs See and Control Employees’ AI Use?Building a database of AI destinations and capturing employee activity are essential steps in gaining visibility. Monitoring user prompts, responses, and data exchanged with AI models is crucial for understanding employee behavior.HELPNETSECURITY.COM
17 JulOracle Patches 240 Vulnerabilities With July 2024 CPUOracle releases 386 new security patches to resolve roughly 240 unique CVEs as part of its July 2024 Critical Patch Update. The post Oracle Patches 240 Vulnerabilities With July 2024 CPU appeared first on SecurityWeek .SECURITYWEEK.COM
17 JulParis 2024 Olympics to Face Complex Cyber ThreatsParis 2024 Olympics are expected to face a significant increase in cyber threats, with IDC predicting the Games will encounter a complex threat landscape and a large ecosystem of threat actors.HELPNETSECURITY.COM
17 JulCEO Chris O'Malley on Why LogRhythm, Exabeam Opted to MergeWorld's Largest Pure-Play SecOps Vendor Will Have Leading On-Prem, Cloud SIEM Tools Two SIEM stalwarts completed a merger Wednesday that their CEO said will bring industry-leading capabilities to customers on-premises and in the cloud. LogRhythm and Exabeam will standardize on th…DATABREACHTODAY.CO.UK
17 JulWhat are You Working on Wednesdaysubmitted by shellsharks to cybersecurity 1 points | 0 comments Weekly thread to discuss whatever you’re working on, big or small, at work or in your free time.INFOSEC.PUB
17 JulInterpol Arrests 300 People in a Global Crackdown on West African Crime Groups Across 5 ContinentsInterpol arrests 300 people in a global crackdown on West African crime groups specializing in online financial fraud. The post Interpol Arrests 300 People in a Global Crackdown on West African Crime Groups Across 5 Continents appeared first on SecurityWeek .SECURITYWEEK.COM
17 JulResonance Launches Harmony to Monitor and Detect Threats to Web2 and Web3 AppsQuick take: Resonance, a full-spectrum cybersecurity firm building security solutions for Web2 and Web3 apps has launched Harmony. The asset monitoring tool allows IT teams, organisations, startups and entrepreneurs to make strong detective and preventive measures accessible at a…GBHACKERS.COM
17 JulPindrop Security Raises $100 Million to Expand Deepfake Detection TechnologyThe additional funds will be used to further the development of new tools to counter the expanding threat of AI-generated voice deepfakes. The post Pindrop Security Raises $100 Million to Expand Deepfake Detection Technology appeared first on SecurityWeek .SECURITYWEEK.COM
17 JulProud Diamond Sponsor at Black Hat USAAt Black Hat USA 2024, discover how cyber resilience solutions from Palo Alto Networks powered by Precision AI™ can help you trust AI outcomes. The post Proud Diamond Sponsor at Black Hat USA appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
17 JulOver 400,000 Life360 user phone numbers leaked via unsecured APIA threat actor has leaked a database containing the personal information of 442,519 Life360 customers collected by abusing a flaw in the login API. [...]BLEEPINGCOMPUTER.COM
17 JulNorth Korean Hackers Update BeaverTail Malware to Target MacOS UsersCybersecurity researchers have discovered an updated variant of a known stealer malware that attackers affiliated with the Democratic People's Republic of Korea (DPRK) have delivered as part of prior cyber espionage campaigns targeting job seekers. The artifact in question is an …THEHACKERNEWS.COM
17 JulAtlassian Patches High-Severity Vulnerabilities in Bamboo, Confluence, JiraAtlassian releases security-themed updates to fix several high-severity vulnerabilities in its Bamboo, Confluence and Jira products. The post Atlassian Patches High-Severity Vulnerabilities in Bamboo, Confluence, Jira appeared first on SecurityWeek .SECURITYWEEK.COM
17 JulMalvertising Campaign Impersonates Microsoft TeamsResearchers at Malwarebytes warn that a malvertising campaign is targeting Mac users with phony Microsoft Teams ads. T he ads are meant to trick users into installing Atomic Stealer, a commodity strain of malware designed to steal information from macOS systems.KNOWBE4.COM
17 JulNotorious FIN7 hackers sell EDR killer to other threat actorsThe notorious FIN7 hacking group has been spotted selling its custom "AvNeutralizer" tool, used to evade detection by killing enterprise endpoint protection software on corporate networks. [...]BLEEPINGCOMPUTER.COM
17 JulInside Arctic Wolf's SecOps Growth Strategy From MDR to ITDRCEO Nick Schneider on the Company's Security Operations Cloud and Concierge Model CEO Nick Schneider explains Arctic Wolf's success with MDR and ITDR services, highlighting the company's unique security operations cloud and concierge delivery model. He also discusses Arctic Wolf'…DATABREACHTODAY.CO.UK
17 JulSecuring AI in the Cloud: Insights From Orca Security's CEOGil Geron on Cloud Innovations and Integrating AI Into Security Posture Management Orca Security CEO Gil Geron outlines the integration of AI for advanced security posture management. He emphasizes the importance of deep visibility into cloud environments, customer adoption and p…DATABREACHTODAY.CO.UK
17 JulConnect with Microsoft Security at Black Hat USA 2024​​Join Microsoft Security leaders and other security professionals from around the world at Black Hat USA 2024 to learn the latest information on security in the age of AI, cybersecurity protection, threat intelligence insights, and more.​ The post Connect with Microsoft Security a…MICROSOFT.COM
🌐 CYBER THREAT LANDSCAPE 3[−]
17 JulFake AWS Packages Ship Command and Control Malware in JPEG FilesThe two malicious packages, img-aws-s3-object-multipart-copy and legacyaws-s3-object-multipart-copy, were downloaded 190 and 48 times, respectively, before being removed by npm security.PHYLUM.IO
17 JulHidden dangers of free VPN services | Kaspersky official blogHow several free VPN services were employed to create one of the largest botnets in history — consisting of 19 million IP addresses.KASPERSKY.COM
🎙️ PODCASTS 1[−]
17 JulSmashing Security podcast #381: Trump shooting conspiracy, Squarespace account hijack, and the butt stops hereSocial media fuels conspiracies galore after Donald Trump is shot at a rally, cryptocurrency websites are hijacked after a screw-up at Squarespace, and our guest takes a close look at bottoms on Instagram. All this and much much more is discussed in the latest edition of the "Sma…GRAHAMCLULEY.COM
📡 INFOSEC NEWS 15[−]
17 JulBeware of BadPack: One Weird Trick Being Used Against Android DevicesBadPack is an APK file intentionally packaged in a malicious way. In most cases, this means an attacker has maliciously altered header information used in the compressed file format for APK files.UNIT42.PALOALTONETWORKS.COM
17 JulWell-Established Cybercriminal Ecosystem Blooms in IraqResearchers have uncovered a well-established cybercriminal ecosystem connected to a Telegram bot, with over 90,000 Arabic messages dating back to 2022, enabling a sophisticated network offering social media manipulation and financial theft services.DARKREADING.COM
17 JulBaffle to offer tenant-level data encryption to AWS usersSaaS applications running on AWS can now provide tenant-level data protection as data security provider Baffle announces new integration with AWS Server Side Encryption (SSE). AWS’ SSE feature, aimed at protecting data at rest by encrypting it before saving it to disks, will now …CSOONLINE.COM
17 JulG2 Names Sophos a Leader for Endpoint Protection, EDR, XDR, Firewall, and MDRSophos rated a top solution among Firewall and MDR usersSOPHOS.COM
17 JulTether Freezes $29 Million of Cryptocurrency Connected To Cambodian Marketplace Accused of Fueling ScamsTether has frozen $29 million of cryptocurrency linked to a Cambodian marketplace accused of supporting scams. Tether confirmed the freeze, citing concerns about fraudulent and criminal activities.THERECORD.MEDIA
17 JulNavigating Insider Risks: Are your Employees Enabling External Threats?Attacks on your network are often meticulously planned operations launched by sophisticated threats. Sometimes your technical fortifications provide a formidable challenge, and the attack requires assistance from the inside to succeed. For example, in 2022, the FBI issued a warni…THEHACKERNEWS.COM
17 JulHacktivist Groups Target Romania Amid Geopolitical TensionsHacktivist groups are targeting Romania amidst geopolitical tensions, with increased DDoS attacks observed by security researchers. These attacks involve CyberDragon and the Cyber Army of Russia.INFOSECURITY-MAGAZINE.COM
17 Jul“Konfety” Mobile Ad Fraud Campaign Found Using Unique Obfuscation MethodA massive ad fraud operation known as Konfety is using over 250 Google Play decoy apps to hide malicious twins. The campaign leverages a mobile advertising SDK linked to a Russia-based ad network named CaramelAds.HUMANSECURITY.COM
17 JulDeepfake-detecting firm Pindrop lands $100M loan to grow its offeringsPindrop builds deepfake-combatting and multi-factor authentication products targeting businesses in banking, finance and related industries. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
17 JulSophos Endpoint: Providing a smooth transition for Kaspersky customersTransition to Sophos Endpoint following the US ban on Kaspersky antivirus.SOPHOS.COM
17 JulSocial Engineering Defense - An Emerging CareerHelp Organizations Build Robust Defenses Against Human-Centric Threats Social engineering, which involves manipulating individuals into sharing confidential data or performing actions that compromise security, is a big threat. As organizations realize the importance of addressing…DATABREACHTODAY.CO.UK
17 JulExchange Online adds Inbound DANE with DNSSEC for security boostMicrosoft is rolling out inbound SMTP DANE with DNSSEC for Exchange Online in public preview, a new capability to boost email integrity and security. [...]BLEEPINGCOMPUTER.COM
17 JulCourt's Web Tracker Ruling: What HIPAA Entities Should KnowHealthcare groups should consider several key points about a recent Texas federal court ruling and its impact on the use of online tracker technology on the healthcare websites of HIPAA-regulated organizations, said privacy attorney Iliana Peters of the law firm Polsinelli.DATABREACHTODAY.CO.UK