92Articles
8Categories
2024-07-19Date
🐛 COMMON VULNERABILITIES AND EXPOSURES 4[−]
19 JulCisco patches severe password reset flaw that lets hackers hijack SSM On-Prem license serversCisco has issued a patch that fixes a severe password weakness in many versions of its Smart Software Manager On-Prem (Cisco SSM On-Prem), used by a subset of customers to manage product licenses using an on-premises server. The company is vague about the details of the vulnerabi…CSOONLINE.COM
19 JulSolarWinds Fixes Eight Critical Bugs in Access Rights Audit SoftwareThe vulnerabilities (CVE-2024-23469, CVE-2024-23466, CVE-2024-23467, CVE-2024-28074, CVE-2024-23471, and CVE-2024-23470) were all rated with severity scores of 9.6/10 and posed risks of unauthorized actions and information disclosure.BLEEPINGCOMPUTER.COM
19 JulCritical Splunk Flaw can be Exploited to Grab PasswordsA critical vulnerability (CVE-2024-36991) in Splunk Enterprise on Windows is considered more severe than initially thought, allowing attackers to grab passwords. Various proof-of-concept exploits have been published.HELPNETSECURITY.COM
19 Jul KEVSolarwinds patches critical RCE flaws in Access Rights ManagerUS software development company Solarwinds has sent out important security fixes that close a number of critical vulnerabilities in its Access Rights Manager software. Six of the vulnerabilities scored 9.6 out of 10 on the Common Vulnerability Scoring Scale (CVSS), which means ha…CSOONLINE.COM
⚠️ VULNERABILITY DISCLOSURE 23[−]
19 JulHashcat explained: How this password cracker worksWhat is hashcat? Hashcat is a popular and effective password cracker widely used by both penetration testers and sysadmins, as well as criminals and spies. Cracking passwords is different from guessing a web login password, which typically allows only a small number of guesses be…CSOONLINE.COM
19 JulQilin Ransomware’s Sophisticated Tactics Unveiled By ExpertsWith over 150 organizations in 25 countries affected, Qilin's sophisticated tactics include exploiting vulnerabilities, using tools like Mimikatz for privilege escalation, and evading defenses by deleting logs and using PowerShell commands.INFOSECURITY-MAGAZINE.COM
19 JulSolarWinds Patches 11 Critical Flaws in Access Rights Manager SoftwareSolarWinds has addressed a set of critical security flaws impacting its Access Rights Manager (ARM) software that could be exploited to access sensitive information or execute arbitrary code. Of the 11 vulnerabilities, seven are rated Critical in severity and carry a CVSS score o…THEHACKERNEWS.COM
19 JulCritical Cisco Bug Lets Hackers Add Root Users on SEG DevicesCisco has addressed a critical vulnerability that allows attackers to add new users with root privileges and crash Security Email Gateway (SEG) appliances by sending emails with malicious attachments.BLEEPINGCOMPUTER.COM
19 Jul$300,000 Offered for WhatsApp Exploit at Pwn2Own IrelandThe Pwn2Own hacking competition is moving to Ireland and $300,000 is being offered for a zero-click exploit against WhatsApp. The post $300,000 Offered for WhatsApp Exploit at Pwn2Own Ireland appeared first on SecurityWeek .SECURITYWEEK.COM
19 JulNew Malware Campaign Exploiting RDPWrapper and Tailscale Targets Cryptocurrency UsersBy configuring multiple RDP sessions with RDPWrapper and using Tailscale for secure network connections, attackers can maintain access and exfiltrate sensitive data discreetly.THECYBEREXPRESS.COM
19 JulHotPage Malware Hijacks Browsers with Signed Microsoft DriverThe malware's driver was signed by Microsoft but attributed to a suspicious Chinese company, Hubei Dunwang Network Technology Co., Ltd. The company exploited Microsoft's driver code-signing requirements to obtain an Extended Verification certificate.INFOSECURITY-MAGAZINE.COM
19 JulGrype: Open-Source Vulnerability Scanner for Container Images, FilesystemsGrype is an open-source vulnerability scanner for container images and filesystems that works with Syft to detect vulnerabilities in major operating system and language-specific packages like Alpine, Debian, Ruby, Java, Python, and more.HELPNETSECURITY.COM
19 JulNew Hacker Group Uses Open-Source Tools to Spy on Entities in Asia-Pacific RegionTargets of TAG-100's attacks include intergovernmental and diplomatic entities in the Asia-Pacific region, religious organizations in the U.S. and Taiwan, as well as a political party supporting an investigation into the Chinese government.THERECORD.MEDIA
19 JulOperation Spincaster Targets Crypto Pig-Butchering ScamsOperation Spincaster, involving law enforcement and government agencies across six countries, as well as 17 cryptocurrency exchanges, has identified 7,000 leads and $162 million in losses.BANKINFOSECURITY.COM
19 JulCritical TE.0 HTTP Request Smuggling Vulnerability Impacts Thousands of Google Cloud-hosted WebsitesThis new class of HTTP Request Smuggling vulnerabilities poses a significant risk to thousands of websites, including those protected by Google's Load Balancer and Identity-Aware Proxy (IAP).BUGCROWD.COM
19 JulUS Data Breach Victim Numbers Surge 1170% AnnuallyThe number of US data breach victims in Q2 2024 increased annually by over 1000%, despite a 12% decrease in the actual number of incidents in those three months, according to the Identity Theft Resource Center (ITRC).INFOSECURITY-MAGAZINE.COM
19 JulBook Discussion: Jump-start Your SOC Analyst Career - Jarrett Rodrick, Tyler Wall - ESW #368Three years after we last discussed this book on episode #221, Jarrett Rodrick returns, joined by co-author Tyler Wall to discuss an update of the book. We talk opportunities and layoffs. Career paths and experience. Degrees, certifications, and home labs. We talk about who cyber…YOUTUBE.COM
19 JulRecent Splunk Enterprise Vulnerability Easy to Exploit: Security FirmSonicWall warns that a simple GET request is enough to exploit a recent Splunk Enterprise vulnerability. The post Recent Splunk Enterprise Vulnerability Easy to Exploit: Security Firm appeared first on SecurityWeek .SECURITYWEEK.COM
19 JulWhat's wrong with the cybersecurity industry and what we can do about it - Richard Hollis - ESW #368On this segment, we're going to zoom all the way out to discuss one of my favorite topics: what's fundamentally wrong with this industry? I believe we're at an inflection point: security teams have budget, staff, and more sway at the board level than ever. The cybersecurity marke…YOUTUBE.COM
19 JulWidespread IT Outage Due to CrowdStrike UpdateNote: CISA will update this Alert with more information as it becomes available. As of 1130am EDT July 19, 2024:   CISA is aware of the widespread outage affecting Microsoft Windows hosts due to an issue with a recent CrowdStrike update and is working closely with Crowdstrik…CISA.GOV
19 JulCISA’s Red Team Exercise Shows Value of Phishing, but Misses the Best RecommendationPhishing is used to completely compromise the victim’s environment after other repeated methods failed.KNOWBE4.COM
19 JulTrend Experts Weigh in on Global IT Outage Caused by CrowdStrikeOn July 19, 2024, a large-scale outage emerged affecting Windows computers for many industries across the globe from financial institutions to hospitals to airlines. The source of this outage came from a single content update from CrowdStrike.TRENDMICRO.COM
19 JulCrowdStrike Phishing Attacks Appear in Record TimeI have been the CEO of an anti-virus software developer. We had a special acronym for catastrophic events like this, a so-called "CEE". As in Company Extinction Event.  Within hours of mass IT outages on Friday, a surge of new domains began appearing online, all sharing one …KNOWBE4.COM
19 JulFriday Squid Blogging: Peru Trying to Protect its Squid FisheriesPeru is trying to protect its territorial waters from Chinese squid-fishing boats. Blog moderation policy.SCHNEIER.COM
19 JulResearcher detects what could have been one of the largest supply chain vulnerabilities to date. Cyber Security Today Weekend for July 20thDodging the Biggest Supply Chain Attack Ever: An Insight with JFrog's Security Research Team In this weekend edition of Cyber Security Today, host Jim Love discusses with Brian Moussalli, the Security Research Team Lead at JFrog, how potentially the biggest supply chain attack wa…CYBERSECURITYTODAY.LIBSYN.COM
19 JulCrowdStrike/Microsoft Outage Latest Blow to HealthcareSome EHRs Affected; Hospitals Cancel Patient Care in Latest Vendor Mega Incident As if the healthcare sector doesn't have enough technology problems, the global IT outage caused by a faulty CrowdStrike software update has forced some hospitals and other medical facilities worldwi…DATABREACHTODAY.CO.UK
19 JulUS cyber agency CISA says malicious hackers are ‘taking advantage’ of CrowdStrike outageCISA confirmed the CrowdStrike outage was not caused by a cyberattack, but urged caution as malicious hackers exploit the situation. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
📋 SECURITY BULLETINS 6[−]
19 JulBanks and Airlines Disrupted as Mass Outage Hits Windows PCsCrowdStrike Confirms Faulty Software Update for Falcon Sensor, Details Workaround Banks, airlines, media giants and others are being disrupted by a mass, global IT outage tied to Windows PCs. While CrowdStrike has issued workarounds tied to a Falcon software update that appears t…DATABREACHTODAY.CO.UK
19 JulBlue screen of death strikes crowd of CrowdStrike serversCrowdStrike has admitted to pushing out a bad software update, causing many Windows machines running the affected software to crash. The problem, apparently affecting its Falcon platform, brought down servers at airlines, locked up computers at banks, and hurt healthcare services…CSOONLINE.COM
19 JulGlobal Microsoft Meltdown Tied to Bad Crowstrike UpdateA faulty software update from cybersecurity vendor Crowdstrike crippled countless Microsoft Windows computers across the globe today, disrupting everything from airline travel and financial institutions to hospitals and businesses online. Crowdstrike said a fix has been deployed,…KREBSONSECURITY.COM
19 JulWhat we know about CrowdStrike’s update fail that’s causing global outages and travel chaosHere's everything you need to know so far about the global outages caused by CrowdStrike's buggy software update. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
19 JulBeyond the blue screen of death: Why software updates matterThe widespread IT outages triggered by a faulty CrowdStrike update have put software updates in the spotlight. Here’s why you shouldn’t dread them.WELIVESECURITY.COM
19 JulThe complexities of cybersecurity update processesIf a software update process fails, it can lead to catastrophic consequences, as seen today with widespread blue screens of death blamed on a bad update by CrowdStrikeWELIVESECURITY.COM
📢 SECURITY ADVISORIES 6[−]
19 JulInside the world’s largest ‘live-fire’ cyber-defense exerciseThe island country of Berylia is under threat. Over the next 48 hours, it will be subject to an endless number of cyberattacks without interruption, which it must contain in the best way possible. Although the country is prepared, the scenario is far from ideal, as it is engaged …CSOONLINE.COM
19 JulCISA Appoints New Cybersecurity, Stakeholder Group LeadersThe Cybersecurity and Infrastructure Security Agency (CISA) has appointed new leaders to its cybersecurity division and stakeholder engagement role to enhance national cyber defenses and foster collaboration between the public and private sectors.BANKINFOSECURITY.COM
19 JulWidespread Windows Crashes Due to Crowdstrike Updates, (Fri, Jul 19th)Last night, endpoint security company Crowdstrike released an update that is causing widespread "blue screens of death" (BSOD) on Windows systems. Crowdstrike released an advisory, which is only available after logging into the Crowdstrike support platform. A brief public stateme…ISC.SANS.EDU
19 JulISMG Editors: AT&T's Ransom Payment in Snowflake BreachAlso: AI Bots in the Workplace; AI Regulations in the US and EU In the latest weekly update, ISMG editors discussed AT&T's alleged ransom payment to hackers following a breach of its Snowflake account, the challenges of using AI bots in the workplace, and the impact of differ…DATABREACHTODAY.CO.UK
19 JulFederal Agencies Scramble to Fix Massive Software OutageCrowdStrike Outage Rekindles Concerns Over Federal Cybersecurity Contingency Plans Federal agencies including CISA rushed on Friday to provide IT support to critical infrastructure sectors in the U.S. while resolving their own system disruptions caused by a faulty update pushed t…DATABREACHTODAY.CO.UK
🔥 INCIDENT REPORTING 20[−]
19 JulWazirX Cryptocurrency Exchange Loses $230 Million in Major Security BreachIndian cryptocurrency exchange WazirX has confirmed that it was the target of a security breach that led to the theft of $230 million in cryptocurrency assets. "A cyber attack occurred in one of our [multi-signature] wallets involving a loss of funds exceeding $230 million," the …THEHACKERNEWS.COM
19 JulPlay Ransomware Group’s New Linux Variant Targets ESXi, Shows Ties With Prolific PumaTrend Micro threat hunters discovered that the Play ransomware group has been deploying a new Linux variant that targets ESXi environments. Read our blog entry to know more.TRENDMICRO.COM
19 JulHacked YouTube Channels Use Trump Assassination News to Push Crypto ScamThe scam involves deepfake videos of Elon Musk promising insights into the attack and encouraging viewers to participate in a cryptocurrency giveaway by scanning a QR code in the video.HACKREAD.COM
19 JulAPT41 Infiltrates Networks in Italy, Spain, Taiwan, Turkey, and the U.K.Several organizations operating within global shipping and logistics, media and entertainment, technology, and automotive sectors in Italy, Spain, Taiwan, Thailand, Turkey, and the U.K. have become the target of a "sustained campaign" by the prolific China-based APT41 hacking gro…THEHACKERNEWS.COM
19 JulAttacks on Israeli Orgs ‘More Than Doubled’ Since October 7, Cyber Researcher SaysCyberattacks on Israeli organizations have more than doubled since the October 7 terrorist attack, with politically-motivated groups like hackers affiliated with Iran and Hezbollah, along with hacktivists, being the main drivers behind these attacks.THERECORD.MEDIA
19 JulRussians plead guilty to involvement in LockBit ransomware attacksTwo Russian nations have pleaded guilty to involvement in many LockBit ransomware attacks, which targeted victims worldwide and across the United States. [...]BLEEPINGCOMPUTER.COM
19 JulMediSecure Data Breach Impacts 12.9 Million IndividualsThe personal and health information of 12.9 million was stolen in a ransomware attack at Australian digital prescription services provider MediSecure. The post MediSecure Data Breach Impacts 12.9 Million Individuals appeared first on SecurityWeek .SECURITYWEEK.COM
19 JulHackers Claiming Dettol Data Breach: 453,646 users ImpactedA significant data breach has been reported by a threat actor known as ‘Hana,’ who claims to have compromised the personal information of 453,646 users of Dettol India. The breach was announced via a post on the social media platform X by FalconFeedsio. Details of the…GBHACKERS.COM
19 JulTwo Russian Nationals Plead Guilty in LockBit Ransomware AttacksTwo Russian nationals have pleaded guilty in a U.S. court for their participation as affiliates in the LockBit ransomware scheme and helping facilitate ransomware attacks across the world. The defendants include Ruslan Magomedovich Astamirov, 21, of Chechen Republic, and Mikhail …THEHACKERNEWS.COM
19 JulIn Other News: Summer Olympics Threats, Funding Soars, Trump Shooter’s Phone HackedNoteworthy stories that might have slipped under the radar: threats and risks to 2024 Summer Olympics, cybersecurity funding soars, Cellebrite hacked Trump shooter’s phone. The post In Other News: Summer Olympics Threats, Funding Soars, Trump Shooter’s Phone Hacked appeared…SECURITYWEEK.COM
19 JulFrom the Sphere to false cyberattack claims, misinformation runs rampant amid CrowdStrike outageThis serves as an example for how easy it is to spread inaccurate information online during a time of immense global confusion and panic. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
19 JulAfter CrowdStrike Outage Cleanup, Tough Resiliency QuestionsIn the Spotlight: Quality Assurance, Business Resilience, Single Points of Failure Expect the global IT disruptions caused by a bug in CrowdStrike's software to prompt quality assurance questions for the cybersecurity vendor. Experts say the incident also highlights shortcomings …DATABREACHTODAY.CO.UK
19 JulCrowdStrike, Microsoft Outage Uncovers Big Resiliency IssuesIn the Spotlight: Quality Assurance, Business Resilience, Single Points of Failure Expect the global IT disruptions caused by a bug in CrowdStrike's software to prompt quality assurance questions for the cybersecurity vendor. Experts say the incident also highlights shortcomings …DATABREACHTODAY.CO.UK
19 JulMediSecure: Ransomware gang stole data of 12.9 million peopleMediSecure, an Australian prescription delivery service provider, revealed that roughly 12.9 million people had their personal and health information stolen in an April ransomware attack. [...]BLEEPINGCOMPUTER.COM
19 JulRumored Wiz Deal Would be HISTORIC (if it happens), redefining shared responsibility - ESW #368In this week's enterprise security news, 1. Google is rumored to be considering acquiring Wiz for $23 BILLION 2. ThreatConnect acquires Polarity 3. XBOW and Sola Security are interesting new companies we’ll discuss 4. What does “shared responsibility” actually mean? 5. Palo Alto …YOUTUBE.COM
19 Jul78% of Organizations Are Targets of Ransomware Attacks Two or More Times in Twelve MonthsNew data puts the spotlight on the frequency and impact of modern ransomware attacks, highlighting the overconfidence organizations are showing in their ability to defend and respond to attacks.KNOWBE4.COM
19 JulAnalyzing the CrowdStrike Incident and Its Ripple Effects - SWN #399In this episode of Security Weekly News, Dr. Doug White and Josh Marpet delve into the widespread impact of the recent CrowdStrike and Microsoft technical issue, which disrupted various industries, including airlines, DMVs, and hospitals. They discuss the interconnectedness of mo…YOUTUBE.COM
19 JulISMG Editors: What the CrowdStrike Outage Taught Us So FarPanelists Discuss Immediate and Long-Term Impact of Global Outage In this special edition of the ISMG Editors' Panel, CyberEd Board member Ian Thornton-Trump joined editors to discuss the fallout from the massive CrowdStrike IT outage, the reaction from the tech industry and how …DATABREACHTODAY.CO.UK
19 JulMassive Global Outage: CrowdStrike Incident Grounds Flights & Shuts Down Circle K! 🚨In this shocking clip from Security Weekly News, Joshua Marpet dives into the global fallout of the recent CrowdStrike incident. From grounding every flight in the US to causing chaos at airports and Circle K stores, the impact is unprecedented. Hospitals in the Netherlands are d…YOUTUBE.COM
🕵️ THREAT INTELLIGENCE 14[−]
19 JulISC Stormcast For Friday, July 19th, 2024 https://isc.sans.edu/podcastdetail/9060, (Fri, Jul 19th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
19 JulOperation Spincaster Disrupts Approval Phishing Technique that Drains Victim’s WalletsChainalysis has launched Operation Spincaster, an initiative to disrupt approval phishing scams that have drained billions from victims’ wallets. This operation, which brings together public and private sectors, has yielded promising results and offers a blueprint for futur…GBHACKERS.COM
19 JulCompanies around the world hit by IT outagesubmitted by hellfire103 to cybersecurity 6 points | 1 comments https://archive.is/AyT0RARCHIVE.IS
19 JulMicrosoft IT outage latest: Airports, businesses and banks including Sky News experiencing issues worldwidesubmitted by onlinepersona to security 1 points | 0 comments https://news.sky.com/story/outages-latest-airports-business-and-broadcasters-experiencing-issues-worldwide-13180821 Caused by security firm CrowdStrike that issued an update.SKY.COM
19 JulCrowdStrike Update Triggers Widespread Windows CrashesA recent update from cybersecurity firm CrowdStrike has caused significant disruptions for Windows users, leading to widespread reports of Blue Screen of Death (BSOD) errors. The issue, affecting multiple versions of the company’s sensor software, has prompted urgent invest…GBHACKERS.COM
19 JulNew Cyware Survey Reveals Critical Gaps in Cybersecurity Threat Intelligence Sharing and CollaborationAs per the Cyware survey, 91% of respondents recognize the significance of collaboration in cybersecurity, but many struggle to effectively combine insights across teams and platforms.FINANCE.YAHOO.COM
19 JulSolarWinds Patches Critical Vulnerabilities in Access Rights ManagerSolarWinds has released patches for 13 vulnerabilities in Access Rights Manager, including eight critical bugs. The post SolarWinds Patches Critical Vulnerabilities in Access Rights Manager appeared first on SecurityWeek .SECURITYWEEK.COM
19 JulBad CrowdStrike Update Linked to Major IT Outages WorldwideOrganizations worldwide are reporting major outages due to Windows system crashes caused by a bad CrowdStrike update. The post Bad CrowdStrike Update Linked to Major IT Outages Worldwide appeared first on SecurityWeek .SECURITYWEEK.COM
19 JulSafeguard Personal and Corporate Identities with Identity IntelligenceLearn about critical threats that can impact your organization and the bad actors behind them from Cybersixgill’s threat experts. Each story shines a light on underground activities, the threat actors involved, and why you should care, along with what you can do to mitigate risk.…THEHACKERNEWS.COM
19 JulCoSAI: Tech Giants Form Coalition for Secure AIOver a dozen tech and cloud companies have created a new coalition for advancing security measures for AI. The post CoSAI: Tech Giants Form Coalition for Secure AI appeared first on SecurityWeek .SECURITYWEEK.COM
19 JulBrett Solomon on Digital RightsBrett Solomon is retiring from AccessNow after fifteen years as its Executive Director. He’s written a blog post about what he’s learned and what comes next.SCHNEIER.COM
19 Jul🔊 Cassie Crossley on Supply Chain Dynamics at Schneider Electric | Below the Surface PodcastDive into the intricate world of supply chains with Cassie Crossley from Schneider Electric! 🌐 Discover how a single product or component, affectionately termed the "S-bomb," impacts multiple products and how this is interconnected with "H-bombs" (hardware builds) and materials. …YOUTUBE.COM
19 JulJudge Dismisses Major SEC Charges Against SolarWinds and CISOJudge dismissed SEC lawsuit charging SolarWinds and CISO Timothy Brown with hiding security problems before and after the SUNBURST supply chain compromise. The post Judge Dismisses Major SEC Charges Against SolarWinds and CISO appeared first on SecurityWeek .SECURITYWEEK.COM
19 JulCrowdStrike Global Outage Halts Hospital Systems - What You Need to Know!🚨 Breaking News! 🚨 Join Doug White & Josh Marpet on Security Weekly News as they delve into the latest CrowdStrike global outage that's causing widespread system outages in hospitals. Learn about the critical impacts on healthcare services and the dire consequences of network fai…YOUTUBE.COM
🌐 CYBER THREAT LANDSCAPE 2[−]
19 JulPro-Houthi Group Targets Yemen Aid Organizations with Android SpywareA suspected pro-Houthi threat group targeted at least three humanitarian organizations in Yemen with Android spyware designed to harvest sensitive information. These attacks, attributed to an activity cluster codenamed OilAlpha, entail a new set of malicious mobile apps that come…THEHACKERNEWS.COM
19 JulRevolver Rabbit Gang Registers 500,000 Domains for Malware CampaignsThe Revolver Rabbit cybercriminal gang has registered over 500,000 domain names for infostealer campaigns targeting Windows and macOS systems. They utilize registered domain generation algorithms (RDGAs) to rapidly register multiple domains at once.BLEEPINGCOMPUTER.COM
📡 INFOSEC NEWS 17[−]
19 JulMajor IT outage takes out banks, airlines and businesses across the worldBusinesses worldwide on Friday reported outages, including Windows “blue screen of death” errors on their computers, in what has already become one of the most widespread IT disruptions in recent years. The outage has affected companies across various sectors, from ba…TECHCRUNCH.COM
19 JulSummary of "AI Leaders Spill Their Secrets" WebinarEvent Overview The "AI Leaders Spill Their Secrets" webinar, hosted by Sigma Computing, featured prominent AI experts sharing their experiences and strategies for success in the AI industry. The panel included Michael Ward from Sardine, Damon Bryan from Hyperfinity, and Stephen H…THEHACKERNEWS.COM
19 JulSAP AI Core Flaws Expose Sensitive Customer Data and KeysSecurity researchers discovered vulnerabilities in SAP AI Core that allowed attackers to execute arbitrary code, access sensitive data and cloud credentials, and manipulate internal artifacts.INFOSECURITY-MAGAZINE.COM
19 JulMajor Microsoft 365 outage caused by Azure configuration changeMicrosoft says an Azure configuration change caused a major Microsoft 365 outage on Thursday, affecting customers across the Central US region. [...]BLEEPINGCOMPUTER.COM
19 JulExchange Online Adds Inbound DANE with DNSSEC for Security BoostThis new capability combines DNS-based Authentication of Named Entities (DANE) for SMTP and Domain Name System Security Extensions (DNSSEC) to protect against downgrade and man-in-the-middle attacks.BLEEPINGCOMPUTER.COM
19 JulCrowdStrike update crashes Windows systems, causes outages worldwideA faulty component in the latest CrowdStrike Falcon update is crashing Windows systems, impacting various organizations and services across the world, including airports, TV stations, and hospitals. [...]BLEEPINGCOMPUTER.COM
19 JulMajority of SEC Civil Fraud Case Against SolarWinds Dismissed, but Core RemainsMost of the SEC civil fraud case against SolarWinds was dismissed by a U.S. District Court judge, but key allegations related to misleading investors about cybersecurity practices leading up to the 2020 Sunburst hack remain.CYBERSECURITYDIVE.COM
19 JulLarger Deals Propel Cybersecurity Funding to Two-Year High in Q2 2024According to Crunchbase data, cybersecurity funding reached a two-year high in Q2 of 2024, with venture capitalists investing $4.4 billion in startups, the strongest quarter since 2022. This marked a 144% increase from the previous year.CYBERSECURITYDIVE.COM
19 JulFaulty CrowdStrike Update Crashes Windows Systems, Impacting Businesses WorldwideBusinesses across the world have been hit by widespread disruptions to their Windows workstations stemming from a faulty update pushed out by cybersecurity company CrowdStrike. "CrowdStrike is actively working with customers impacted by a defect found in a single content update f…THEHACKERNEWS.COM
19 JulGlobal outage of Microsoft clients due to CrowdStrike update | Kaspersky official blogThe CrowdStrike EDR driver update has affected airports, banks and stores around the world.KASPERSKY.COM
19 JulHere’s how the CrowdStrike outage is affecting planes, trains and automobilesThe CrowdStrike outage that hit early Friday morning and knocked out computers running Microsoft Windows has grounded flights globally. Major U.S. airlines including United, American Airlines and Delta Air Lines have halted flight operations around the world. According to FlightA…TECHCRUNCH.COM
19 JulThe CrowdStrike outage is a plot point in a rom-comThere’s a man in Florida right now who wants to propose to his girlfriend while they’re on a beach vacation. He couldn’t get the engagement ring before he flew down from New England, but it didn’t seem like that big of an issue — his girlfriend’s daughter Nicole was planning to j…TECHCRUNCH.COM
19 JulCrowdStrike’s rivals stand to benefit from its debacleCrowdStrike competes with a number of vendors, including SentinelOne and Palo Alto Networks but also Microsoft, Trellix, Trend Micro and Sophos, in the endpoint security market. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM