97Articles
9Categories
2024-08-06Date
🐛 COMMON VULNERABILITIES AND EXPOSURES 6[−]
6 AugNew Zero-Day Flaw in Apache OFBiz ERP Allows Remote Code ExecutionA new zero-day pre-authentication remote code execution vulnerability has been disclosed in the Apache OFBiz open-source enterprise resource planning (ERP) system that could allow threat actors to achieve remote code execution on affected instances. Tracked as CVE-2024-38856, the…THEHACKERNEWS.COM
6 Aug KEVGoogle Patches New Android Kernel Vulnerability Exploited in the WildGoogle has addressed a high-severity security flaw impacting the Android kernel that it has been actively exploited in the wild. The vulnerability, tracked as CVE-2024-36971, has been described as a case of remote code execution impacting the kernel. "There are indications that C…THEHACKERNEWS.COM
6 AugGoogle Patches Android Zero-Day Exploited in Targeted AttacksGoogle has patched CVE-2024-36971, a high-severity kernel zero-day vulnerability in Android that has been exploited in targeted attacks. The post Google Patches Android Zero-Day Exploited in Targeted Attacks appeared first on SecurityWeek .SECURITYWEEK.COM
6 AugGoogle Fixes Android Kernel Zero-Day Exploited in Targeted AttacksGoogle has patched a zero-day vulnerability in the Android kernel that was being exploited in targeted attacks. The vulnerability, tracked as CVE-2024-36971, allows for arbitrary code execution without user interaction on unpatched devices.BLEEPINGCOMPUTER.COM
6 AugCVE-2024-38166 Microsoft Dynamics 365 Cross-site Scripting VulnerabilityAn unauthenticated attacker can exploit improper neutralization of input during web page generation in Microsoft Dynamics 365 to spoof over a network by tricking a user to click on a link.MSRC.MICROSOFT.COM
6 AugCVE-2024-38206 Microsoft Copilot Studio Information Disclosure VulnerabilityAn authenticated attacker can bypass Server-Side Request Forgery (SSRF) protection in Microsoft Copilot Studio to leak sensitive information over a network.MSRC.MICROSOFT.COM
⚠️ VULNERABILITY DISCLOSURE 29[−]
6 AugAuthorities have Uncovered USD 40 Million from HackersSingapore authorities have successfully intercepted and reclaimed over USD 40 million defrauded in a sophisticated business email compromise (BEC) scam. The operation, facilitated by INTERPOL’s Global Rapid Intervention of Payments (I-GRIP) mechanism, marks the largest-ever…GBHACKERS.COM
6 Aug148: DubsnatchEver wondered how far a fan would go to get a sneak peek of their favorite artist’s unreleased tracks? In this episode, we uncover the audacious story of some teens bent on getting their hands on the newest dubstep music before anyone else. Sponsors Support for this show comes fr…DARKNETDIARIES.COM
6 AugResearchers Warn of a New Critical Apache OFBiz FlawThe vulnerability allows unauthenticated users to execute screen rendering code under certain conditions in versions up to 18.12.14, with version 18.12.15 addressing the issue.SECURITYAFFAIRS.COM
6 Aug6 hot cybersecurity trends — and 2 going coldIn the world of cybersecurity, as everywhere else, AI and generative AI are top of mind. Malicious actors are using AI and genAI to create more insidious malware, more convincing phishing emails, and more realistic deepfakes. At the same time, vendors are fighting back by incorpo…CSOONLINE.COM
6 AugTurning the screws: The pressure tactics of ransomware gangsSophos X-Ops examines the increasingly aggressive tactics ransomware gangs use to coerce their targetsSOPHOS.COM
6 AugAround 20K Ubiquiti IoT Cameras & Routers are Sitting Ducks for HackersAround 20,000 Ubiquiti IoT cameras and routers are at risk due to a vulnerability that has been known for five years. Researchers have found that despite patches being available, many devices are still vulnerable.DARKREADING.COM
6 AugA Better Investigatory Board for Cyber IncidentsWhen an airplane crashes, impartial investigatory bodies leap into action, empowered by law to unearth what happened and why. But there is no such empowered and impartial body to investigate CrowdStrike’s faulty update that recently unfolded, ensnarling banks, airlines, and…SCHNEIER.COM
6 AugOver 13,000 phones wiped clean as cyberattack cripples Mobile GuardianA massive cyberattack targeting Mobile Guardian, a UK-based mobile device management ( MDM ) firm, has caused widespread disruption to schools and businesses worldwide, including North America, Europe, and Singapore. The incident has resulted in the loss of data and remote wiping…CSOONLINE.COM
6 AugCyberattacks Still Ravage Schools, Defying White House Efforts Launched Last YearLast year, the White House launched an initiative to strengthen school cybersecurity, but cyberattacks on schools persist. Private sector resources have been utilized by thousands of school districts to enhance their defenses.NEXTGOV.COM
6 AugThe top new cybersecurity products at Black Hat USA 2024Black Hat USA 2024 once again served as a launchpad for several cybersecurity products and services with many notable vendors as well as up-and-coming startups showcasing their innovations at the annual conference, held this week in Las Vegas. The event, alongside the RSA Confere…CSOONLINE.COM
6 AugNorth Korean group infiltrated 100-plus companies with imposter IT pros: CrowdStrike reportCybersecurity giant CrowdStrike has been caught in a torrent of bad news since an errant content configuration update on July 19 sparked a massive IT outage that affected thousands of organizations worldwide. Financial losses from the event could top $15 billion , Delta Airlines …CSOONLINE.COM
6 AugNorth Korean Hackers Exploit VPN Update Flaw to Install MalwareNorth Korean hackers exploited a VPN software update flaw to install malware and breach networks, as warned by South Korea's National Cyber Security Center. The threat groups involved in these activities are Kimsuky (APT43) and Andariel (APT45).BLEEPINGCOMPUTER.COM
6 AugCISA Releases One Industrial Control Systems AdvisoryCISA released one Industrial Control Systems (ICS) advisory on August 6, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-219-01 Delta Electronics DIAScreen CISA encourages users and administra…CISA.GOV
6 AugNorth Korean Hackers Exploit VPN Update Flaw To Breach NetworksNorth Korean state-sponsored hacking groups, including Kimsuky (APT43) and Andariel (APT45), have significantly increased cyberattacks on South Korean construction and machinery sectors.  This surge aligns with Kim Jong-un’s “Local Development 20×10 Policy,”…GBHACKERS.COM
6 AugPanamorfi TCP flood DDoS Attack Targeting Jupyter NotebooksAn attacker, identified as Yawixooo, leveraged a publicly accessible Jupyter Notebook honeypot as an initial access vector. The honeypot’s exposure to the internet-enabled Yawixooo to exploit it without requiring complex techniques. Once gaining a foothold on the system, th…GBHACKERS.COM
6 AugNo One Succeeds Alone! Why You Must Have an Informal Network - Gene Scriven - CSP #186Join us as we discuss how critically important it is for a CISO to establish, maintain, and frequently leverage in informal network. With almost daily changes in the threat landscape across all industries, it's critical to have informal but trusted resources to rely on for advice…YOUTUBE.COM
6 AugINTERPOL Recovers $41 Million in Largest Ever BEC Scam in SingaporeINTERPOL said it devised a "global stop-payment mechanism" that helped facilitate the largest-ever recovery of funds defrauded in a business email compromise (BEC) scam.  The development comes after an unnamed commodity firm based in Singapore fell victim to a BEC scam in mi…THEHACKERNEWS.COM
6 AugSamsung to pay $1,000,000 for RCEs on Galaxy’s secure vaultSamsung has launched a new bug bounty program for its mobile devices with rewards of up to $1,000,000 for reports demonstrating critical attack scenarios. [...]BLEEPINGCOMPUTER.COM
6 AugCongratulations to the MSRC 2024 Most Valuable Security Researchers!The Microsoft Researcher Recognition Program offers public thanks and recognition to security researchers who help protect our customers through discovering and sharing security vulnerabilities under Coordinated Vulnerability Disclosure. Today, we are excited to recognize this ye…MSRC.MICROSOFT.COM
6 AugBlack Hat preview: AI and cloud security take center stageHacker Summer Camp opens in Las Vegas this week with talks on cloud security, supply chain threats, and artificial intelligence at the fore of presentations at BSides LV, Black Hat USA, and DEF CON. Richard Harang, principal security architect at chip giant NVIDIA, is due to offe…CSOONLINE.COM
6 AugAI Tools Have Increased the Sophistication of Social Engineering AttacksThe Cyber Security Agency of Singapore (CSA) has warned that threat actors are increasingly using AI to enhance phishing and other social engineering attacks, Channel News Asia reports.KNOWBE4.COM
6 AugBlack Hat: Latest news and insightsBlack Hat USA 2024 kicks off Aug. 3 at Mandalay Bay in Las Vegas with training sessions, followed by a series of summits on Aug. 6, including the CISO Summit , with sessions on quantifying the cost of cyber risk, navigating regulatory complexity, and rebuilding after a cyber cris…CSOONLINE.COM
6 AugCISA Releases Secure by Demand GuidanceToday, CISA and the Federal Bureau of Investigation (FBI) have released Secure by Demand Guide: How Software Customers Can Drive a Secure Technology Ecosystem to help organizations drive a secure technology ecosystem by ensuring their software manufacturers prioritize secure tech…CISA.GOV
6 AugGenAI is Powering the Latest Surge in Modern Email ThreatsGenerative artificial intelligence (GenAI) tools like ChatGPT have extensive business value. They can write content, clean up context, mimic writing styles and tone, and more. But what if bad actors abuse these capabilities to create highly convincing, targeted and automated phis…CSOONLINE.COM
6 AugLinks that Lie: Stop URL- based Attacks Before They StartThe most damaging cyber threats today don’t target machines or systems—they target humans. Today, 74% of data breaches rely on exploiting the human element . From employees clicking on malicious links to being deceived by emails posing as executives and suppliers, human-targeted …CSOONLINE.COM
6 Aug4 Ways Attackers Use Spoofed Email to Hijack Your Business CommunicationsWhen you hear the term “spoofed” email, does business email compromise (BEC) come to mind? It does for many people—especially security leaders. BEC is a form of email fraud, and it has been a top concern for chief information security officers for years. BEC scams are a costly pr…CSOONLINE.COM
6 AugBuilding Successful Security Champions Programs - Marisa Fagan - ASW #294Even though Security Champions programs look very different across organizations and maturity levels, they share core principles for becoming successful. Marisa shares her experience in building these programs to foster a positive security culture within companies. She explains t…YOUTUBE.COM
6 AugKeeping Content Fresh: 4 Best Practices for Relevant Threat-Driven Security AwarenessThe threat landscape moves fast. As new attack methods and social engineering techniques appear, organizations need to maintain security awareness programs that are relevant, agile and focused. Research from Proofpoint for the 2024 State of the Phish report found that most busine…CSOONLINE.COM
6 AugInside an Actual Threat Detection: Thwarting a CEO Impersonation AttackBackground Last year, the Federal Trade Commission (FTC) received more than 330,000 reports of business impersonation scams and nearly 160,000 reports of government impersonation scams. This represents about half of all the fraud reported directly to the FTC. The financial losses…CSOONLINE.COM
📋 SECURITY BULLETINS 1[−]
6 AugMac and Windows users infected by software updates delivered over hacked ISPsubmitted by BrikoX to cybersecurity 2 points | 1 comments https://arstechnica.com/security/2024/08/hacked-isp-infects-users-receiving-unsecure-software-updates/ DNS poisoning attack worked even when targets used DNS from Google and Cloudflare.ARSTECHNICA.COM
📢 SECURITY ADVISORIES 13[−]
6 AugCequence streamlines API security through fresh LLM-specific offeringsAPI security provider Cequence has added new large language model (LLM) threat detection and management capabilities along with some fresh integrations for API discovery on its Unified API protection (UAP) platform. The revamped platform will now offer additional protection by te…CSOONLINE.COM
6 AugPalo Alto Networks Zero Trust Platform Featured in New NIST GuidancePalo Alto Networks worked with NIST and industry peers to build end-to-end Zero Trust architectures in NIST’s labs, leveraging a range of our technologies. The post Palo Alto Networks Zero Trust Platform Featured in New NIST Guidance appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
6 AugHow Microsoft and NIST are collaborating to advance the Zero Trust ImplementationBoth Microsoft and the National Institute of Standards and Technology (NIST) National Cyber security Center of Excellence (NCCoE) have translated the Zero Trust Architecture (ZTA) and Security Model into practical and actionable deployment. In this blog post, we explore details o…MICROSOFT.COM
🔥 INCIDENT REPORTING 16[−]
6 AugMobile Device Management Vendor Mobile Guardian Hacked Mobile Guardian, a leading Mobile Device Management (MDM) vendor, experienced unauthorized access to its platform on August 4th. The incident has impacted iOS and ChromeOS devices enrolled globally in the Mobile Guardian system. What Happened On August 4th at 2 PM GMT, Mobi…GBHACKERS.COM
6 Aug40 French Museums IT Systems Hit by Ransomware AttackRansomware has infiltrated the IT systems of 40 French museums, including the renowned Louvre. The incident, which occurred on the night of August 3-4, 2024, was first detected by the director of information systems at the Grand Palais site. The director noticed unusual activity …GBHACKERS.COM
6 AugFrance Olympics venue hit by a ransomware attacksubmitted by kid to cybersecurity 1 points | 0 comments https://www.cybersecurity-insiders.com/france-olympics-venue-hit-by-a-ransomware-attack/CYBERSECURITY-INSIDERS.COM
6 AugSuspicious Minds: Insider Threats in The SaaS WorldEveryone loves the double-agent plot twist in a spy movie, but it’s a different story when it comes to securing company data. Whether intentional or unintentional, insider threats are a legitimate concern. According to CSA research, 26% of companies who reported a SaaS security i…THEHACKERNEWS.COM
6 AugKnowBe4 Honors the World Famous Hacker for the First National Social Engineering DayOn August 6th, 2024, we celebrate  National Social Engineering Day  – a new national day established by KnowBe4 and officially recognized by the National Day Calendar. The day aims to educate individuals and organizations about the risks associated with social engineeri…KNOWBE4.COM
6 AugRansomware Gang Targets IT Workers With New SharpRhino MalwareThe Hunters International ransomware group is using a new C# remote access trojan named SharpRhino to target IT workers and breach corporate networks. It is distributed through a typosquatting site posing as Angry IP Scanner's website.BLEEPINGCOMPUTER.COM
6 AugCost of a data breach: The healthcare industryCyberattacks grow every year in sophistication and frequency, and the cost of data breaches continues to rise with them. A new report by IBM and the Ponemon Institute, the 2024 Cost of Data Breach Study, details the financial impacts of attacks across multiple industries. The glo…SECURITYINTELLIGENCE.COM
6 AugCyberattack Cost More Than $17 Million, Key Tronic Tells RegulatorsKey Tronic revealed to regulators that a cyberattack in May 2024 cost the company over $17 million. The attack led to a shutdown of operations in Mexico and the U.S. for two weeks.THERECORD.MEDIA
6 AugFighting Back Against Multi-Staged Ransomware Attacks Crippling BusinessesModern ransomware attacks are multi-staged and highly targeted. First, attackers research the target organization and its employees. The post Fighting Back Against Multi-Staged Ransomware Attacks Crippling Businesses appeared first on SecurityWeek .SECURITYWEEK.COM
6 AugHacker wipes 13,000 devices after breaching classroom management platformA hacker has breached Mobile Guardian, a digital classroom management platform used worldwide, and remotely wiped data from at least 13,000 student's iPads and Chromebooks. [...]BLEEPINGCOMPUTER.COM
6 AugPoint of entry: Why hackers target stolen credentials for initial accessStolen credentials are a big problem, commonly used to breach networks in attacks. Learn more from Specops Software about checking the password hygiene of your Active Directory. [...]BLEEPINGCOMPUTER.COM
6 AugCyberattack knocks Mobile Guardian MDM offline and wipes thousands of student devicesStudents that use school devices managed by Mobile Guardian have been unable to access their files for days following a cyberattack. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
6 AugFrench Museum Network Hit by Ransomware Attack, but No Disruptions Are Reported at Olympic EventsA ransomware attack targeted the central data systems of Paris’ Grand Palais and other museums in the Réunion des Musées Nationaux network. The post French Museum Network Hit by Ransomware Attack, but No Disruptions Are Reported at Olympic Events appeared first on SecurityWeek .SECURITYWEEK.COM
6 AugFrance's Grand Palais discloses cyberattack during Olympic gamesThe Grand Palais Réunion des musées nationaux (Rmn) in France is warning that it suffered a cyberattack on Saturday night, August 3, 2024. [...]BLEEPINGCOMPUTER.COM
6 AugUK data watchdog fines NHS vendor Advanced for security failures prior to LockBit ransomware attackThe ICO issued the provisional fine in "failing to implement appropriate security measures prior to the attack." © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
🕵️ THREAT INTELLIGENCE 19[−]
6 AugISC Stormcast For Tuesday, August 6th, 2024 https://isc.sans.edu/podcastdetail/9084, (Tue, Aug 6th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
6 AugMicrosoft Bug Bounty Payouts Increased to $16.6 Million in Past YearMicrosoft paid out $16.6 million to over 340 security researchers through its bug bounty programs over the past year. The post Microsoft Bug Bounty Payouts Increased to $16.6 Million in Past Year appeared first on SecurityWeek .SECURITYWEEK.COM
6 AugCrowdStrike and Delta Fight Over Who’s to Blame for the Airline Canceling Thousands of FlightsCrowdStrike and Delta are fighting over who is to blame for the airline canceling thousands of flights following the massive outage. The post CrowdStrike and Delta Fight Over Who’s to Blame for the Airline Canceling Thousands of Flights appeared first on SecurityWeek .SECURITYWEEK.COM
6 AugHackers Warn Of Dangerous New 0-Click Threat To GenAI Appssubmitted by kid to cybersecurity 1 points | 0 comments https://www.forbes.com/sites/daveywinder/2024/08/05/hackers-warn-of-dangerous-new-0-click-promptware-threat-to-genai-apps/FORBES.COM
6 AugThe Illusion Of Reputational Damagesubmitted by kid to cybersecurity 1 points | 0 comments https://informationsecuritybuzz.com/the-illusion-of-reputational-damage/ Interesting point of viewINFORMATIONSECURITYBUZZ.COM
6 AugNorth Korean Hackers Moonstone Sleet Push Malicious JS Packages to npm RegistryThe North Korea-linked threat actor known as Moonstone Sleet has continued to push malicious npm packages to the JavaScript package registry with the aim of infecting Windows systems, underscoring the persistent nature of their campaigns. The packages in question, harthat-api and…THEHACKERNEWS.COM
6 AugAbnormal Security Raises $250 Million at $5.1 Billion ValuationEmail security firm Abnormal Security has raised $250 million in a Series D funding round at a $5.1 billion valuation. The post Abnormal Security Raises $250 Million at $5.1 Billion Valuation appeared first on SecurityWeek .SECURITYWEEK.COM
6 AugThousands of Devices Wiped Remotely Following Mobile Guardian HackHackers targeted MDM firm Mobile Guardian and remotely wiped thousands of devices, but there is no evidence of data compromise. The post Thousands of Devices Wiped Remotely Following Mobile Guardian Hack appeared first on SecurityWeek .SECURITYWEEK.COM
6 AugChameleon Device-Takeover Malware Attacking IT EmployeesResearchers have identified a new Chameleon campaign targeting hospitality employees, where the attackers employed a deceptive tactic, disguising malicious software as a CRM app.  File names uploaded to VirusTotal revealed evidence of targeted attacks, including a reference …GBHACKERS.COM
6 AugBlack Hat Fireside Chat: The role of API Security in mitigating online fraud, emerging GenAI risksLAS VEGAS — As Black Hat USA 2024 plays out here this week, the disruptive impact of GenAI/LLM at many different levels will be in the spotlight. Related : GenAI introduces fresh risks We’re in early days. The productivity gains … (more…) The post Black Hat Fireside C…LASTWATCHDOG.COM
6 AugSneaky SnakeKeylogger Slithers Into Windows Email InboxesSnakeKeylogger, also known as KrakenKeylogger, is a malicious software targeting Windows users. It logs keystrokes, steals credentials, and takes screenshots, allowing cybercriminals to capture sensitive information.THEREGISTER.COM
6 AugSamsung Bug Bounty Program Payouts Reach $5M, Top Reward Increased to $1MSamsung has paid out nearly $5 million through its bug bounty program since 2017 and the tech giant announced that the top reward has increased to $1 million. The post Samsung Bug Bounty Program Payouts Reach $5M, Top Reward Increased to $1M appeared first on SecurityWeek .SECURITYWEEK.COM
6 Aug20K Ubiquiti IoT Cameras & Routers Are Sitting Ducks for Hackerssubmitted by kid to cybersecurity 2 points | 0 comments https://www.darkreading.com/ics-ot-security/20k-ubiquiti-iot-cameras-and-routers-are-sitting-ducks-for-hackersDARKREADING.COM
6 AugCrowdStrike Releases Root Cause Analysis of Falcon Sensor BSOD CrashCrowdStrike says the Falcon sensor crash that blue-screened Windows machines was caused by a "confluence" of vulnerabilities and testing gaps. The post CrowdStrike Releases Root Cause Analysis of Falcon Sensor BSOD Crash appeared first on SecurityWeek .SECURITYWEEK.COM
6 AugNew Malvertising Campaign Impersonates Google AuthenticatorResearchers at Malwarebytes spotted a malvertising campaign that abused Google Ads to target people searching for Google Authenticator.KNOWBE4.COM
6 AugDead Code, CrowdStrike's Kernel Lessons, VMs & Security Boundaries, SLUBStick Attack - ASW #294The code curation considerations of removing abandoned protocols in OpenSSL, kernel driver lessons from CrowdStrike's crash, choosing isolation primitives, cross-cache attacks made possible by SLUBStick, and more! Visit https://www.securityweekly.com/asw for all the latest episod…YOUTUBE.COM
6 AugEmail Security Brief: Sing Us a Song You’re the Piano ScamWhat happened Proofpoint recently identified a cluster of activity conducting malicious email campaigns using piano-themed messages to lure people into advance fee fraud (AFF) scams. The campaigns have occurred since at least January 2024, and are ongoing. Most of the messages ta…CSOONLINE.COM
6 AugFake IDS, Storm Bamboo, uBlock, Rhysida, Snake, Delta, TikTok, Josh Marpet... - SWN #404Fake IDS, Storm Bamboo, uBlock, Rhysida, Snake, Delta, TikTok, Josh Marpet, and more, on this Edition of the Security Weekly News. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-404YOUTUBE.COM
🌐 CYBER THREAT LANDSCAPE 4[−]
6 AugMint Stealer: New MaaS Malware Threatens Confidential DataA new MaaS malware known as Mint Stealer has emerged, threatening confidential data. This malware, identified by experts from Cyfirma, is designed to steal a wide range of information by employing advanced encryption and obfuscation techniques.SECURITYONLINE.INFO
6 AugNew Android Spyware LianSpy Evades Detection Using Yandex CloudUsers in Russia have been the target of a previously undocumented Android post-compromise spyware called LianSpy since at least 2021. Cybersecurity vendor Kaspersky, which discovered the malware in March 2024, noted its use of Yandex Cloud, a Russian cloud service, for command-an…THEHACKERNEWS.COM
6 AugBloody Wolf Strikes Organizations in Kazakhstan with STRRAT Commercial MalwareThe STRRAT malware, sold for $80, allows attackers to take control of computers and steal data. Attackers use phishing emails pretending to be from government agencies to trick victims into downloading malicious files.BI.ZONE
6 AugA Survey of Scans for GeoServer Vulnerabilities, (Tue, Aug 6th)A little bit over a year ago, I wrote about scans for GeoServer [1][2]. GeoServer is a platform to process geographic data [3]. It makes it easy to share geospatial data in various common standard formats. Recently, new vulnerabilities were discovere…ISC.SANS.EDU
🎙️ PODCASTS 1[−]
6 AugThe AI Fix #10: An AI cookery dumpster fire, the ARC prize, and a creepy new AI friendIn episode ten of "The AI Fix" podcast, Graham attempts to say "quinoa", Mark draws a line in the amper-sand, ChatGPT becomes an expert in solar panels and bomb disposal, and our hosts watch a terrifying tailer for a creepy new AI friend. Graham discovers that the world of AI coo…GRAHAMCLULEY.COM
📡 INFOSEC NEWS 8[−]
6 AugCrowdStrike And Delta Play The Blame GamePACKETSTORMSECURITY.COM
6 AugProton VPN adds ‘Discreet Icons’ to hide app on Android devicesProton VPN has announced a series of updates to its Windows and Android apps to help users combat censorship, circumvent blocks, and protect themselves from authoritarian governments due to using forbidden tools. [...]BLEEPINGCOMPUTER.COM
6 AugFTC warns consumers of scammers offering to remove all negative information from credit reportsAre you eager for your credit report to be "cleaned-up" so lenders and landlords will have a better opinion of your financial responsibility and creditworthiness? You might be wise to read my article on the Hot for Security blog.BITDEFENDER.COM
6 AugINTERPOL recovers over $40 million stolen in a BEC attackA global stop-payment mechanism created by INTERPOL successfully recovered over $40 million stolen in a BEC attack on a company in Singapore. [...]BLEEPINGCOMPUTER.COM
6 AugGoogle Chrome will let you send money to your favourite websiteGoogle has confirmed plans to implement Web Monetization in Chrome, allowing website owners to receive micro-payments as tips or rewards for their content as an additional way to generate revenue. [...]BLEEPINGCOMPUTER.COM