Cybersecurity and other IT news aggregator

LATEST FEEDS

  • VBScript nudged nearer to the grave with next big Windows 11 update

    VBScript nudged nearer to the grave with next big Windows 11 update 2024-05-23 at 17:16 By Richard Speed The writing’s on the wall for veteran scripting language Microsoft has sent Windows 11 24H2 into the Release Preview channel and confirmed that VBScript will be starting its journey to full deprecation by becoming an on-by-default Feature…


  • VMware Abused in Recent MITRE Hack for Persistence, Evasion

    VMware Abused in Recent MITRE Hack for Persistence, Evasion 2024-05-23 at 17:16 By Eduard Kovacs MITRE has shared information on how China-linked hackers abused VMware for persistence and detection evasion in the recent hack. The post VMware Abused in Recent MITRE Hack for Persistence, Evasion appeared first on SecurityWeek. This article is an excerpt from…


  • 70% of CISOs worry their org is at risk of a material cyber attack

    70% of CISOs worry their org is at risk of a material cyber attack 2024-05-23 at 16:46 By Jessica Lyons Wait, why do you want this job again? Chief information security officers around the globe “are nervously looking over the horizon,” according to a survey of 1,600 CISOs that found more than two thirds (70…


  • Nvidia beats market expectations again, but for how long?

    Nvidia beats market expectations again, but for how long? 2024-05-23 at 16:17 By Dan Robinson 262% topline increases won’t last forever, amid market worries that mega AI investments won’t pay off… Nvidia has turned in another set of sizzling results on the back of AI-driven demand for its products, yet industry watchers are increasingly wondering…


  • Bolster Raises $14 Million for AI-Powered Phishing Protection

    Bolster Raises $14 Million for AI-Powered Phishing Protection 2024-05-23 at 16:17 By Ionut Arghire Bolster has raised $14 million in Series B funding for technology integrations for its AI-powered phishing protection platform. The post Bolster Raises $14 Million for AI-Powered Phishing Protection appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed…


  • 55,000 Impacted by Cyberattack on California School Association 

    55,000 Impacted by Cyberattack on California School Association  2024-05-23 at 16:17 By Eduard Kovacs The Association of California School Administrators (ACSA) is informing nearly 55,000 individuals that they have been impacted by a ransomware attack. The post 55,000 Impacted by Cyberattack on California School Association  appeared first on SecurityWeek. This article is an excerpt from…


  • Cybersecurity Labeling for Smart Devices Aims to Help People Choose Items Less Likely to be Hacked

    Cybersecurity Labeling for Smart Devices Aims to Help People Choose Items Less Likely to be Hacked 2024-05-23 at 16:17 By Associated Press Under the new U.S. Cyber Trust Mark Initiative, manufacturers can affix the label on their products if they meet federal cybersecurity standards. The post Cybersecurity Labeling for Smart Devices Aims to Help People…


  • Teradata takes plunge into lakehouse waters, but not everyone is convinced

    Teradata takes plunge into lakehouse waters, but not everyone is convinced 2024-05-23 at 15:32 By Lindsay Clark We have not changed our minds, the industry has evolved, data warehouse stalwart claims With its vision of a unified enterprise data warehouse, Teradata attracted globally dominant customers including HSBC, Unilever and Walmart. But earlier this month, it…


  • UK PM Sunak calls election, leaving Brits cringing over memory of his Musk love-in

    UK PM Sunak calls election, leaving Brits cringing over memory of his Musk love-in 2024-05-23 at 15:16 By Lindsay Clark Man who promised the Unicorn Kingdom must now face judgement from the real thing Drenched in British spring rain, Prime Minister Rishi Sunak called an election yesterday, surprising colleagues and commentators. And if opinion polls…


  • Nearly 90% of organizations suffer damage after a security incident

    Nearly 90% of organizations suffer damage after a security incident 2024-05-23 at 15:16 By According to a recent cybersecurity incident report, nearly 90% of organizations suffer damage before containing and investigating incidents. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source React to this headline:


  • EPA reveals most water systems do not meet compliance requirements

    EPA reveals most water systems do not meet compliance requirements 2024-05-23 at 15:16 By An investigation by the EPA reveals that a majority of water systems do not meet compliance standards. Security leaders are sharing their thoughts.  This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source React to this…


  • Zero-Day Attacks and Supply Chain Compromises Surge, MFA Remains Underutilized: Rapid7 Report

    Zero-Day Attacks and Supply Chain Compromises Surge, MFA Remains Underutilized: Rapid7 Report 2024-05-23 at 14:31 By Kevin Townsend Attackers are getting more sophisticated, better armed, and faster. Nothing in Rapid7’s 2024 Attack Intelligence Report suggests that this will change. The post Zero-Day Attacks and Supply Chain Compromises Surge, MFA Remains Underutilized: Rapid7 Report appeared first…


  • Why We Need to Get a Handle on AI

    Why We Need to Get a Handle on AI 2024-05-23 at 14:31 By Marc Solomon It will be interesting to see how AI continues to evolve and how it is used by defenders as they attempt to leapfrog attackers and protect the organization against new forms of AI attacks. The post Why We Need to…


  • Newly Detected Chinese Group Targeting Military, Government Entities

    Newly Detected Chinese Group Targeting Military, Government Entities 2024-05-23 at 14:31 By Ionut Arghire Unfading Sea Haze has been targeting military and government entities in South China Sea countries since 2018. The post Newly Detected Chinese Group Targeting Military, Government Entities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View…


  • 400,000 Impacted by CentroMed Data Breach

    400,000 Impacted by CentroMed Data Breach 2024-05-23 at 14:31 By Ionut Arghire The personal information of 400,000 individuals was compromised in a data breach at El Centro Del Barrio (CentroMed). The post 400,000 Impacted by CentroMed Data Breach appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React…


  • NYSE Operator Intercontinental Exchange Gets $10M SEC Fine Over 2021 Hack

    NYSE Operator Intercontinental Exchange Gets $10M SEC Fine Over 2021 Hack 2024-05-23 at 14:31 By Eduard Kovacs Intercontinental Exchange, the company that operates NYSE and other exchanges, has agreed to pay a $10 million fine related to a 2021 hack. The post NYSE Operator Intercontinental Exchange Gets $10M SEC Fine Over 2021 Hack appeared first…


  • Are Your SaaS Backups as Secure as Your Production Data?

    Are Your SaaS Backups as Secure as Your Production Data? 2024-05-23 at 14:31 By Conversations about data security tend to diverge into three main threads: How can we protect the data we store on our on-premises or cloud infrastructure? What strategies and tools or platforms can reliably backup and restore data? What would losing all…


  • Inside Operation Diplomatic Specter: Chinese APT Group’s Stealthy Tactics Exposed

    Inside Operation Diplomatic Specter: Chinese APT Group’s Stealthy Tactics Exposed 2024-05-23 at 14:31 By Governmental entities in the Middle East, Africa, and Asia are the target of a Chinese advanced persistent threat (APT) group as part of an ongoing cyber espionage campaign dubbed Operation Diplomatic Specter since at least late 2022. “An analysis of this threat actor’s…


  • Bing and Copilot fall from the clouds

    Bing and Copilot fall from the clouds 2024-05-23 at 14:16 By Richard Speed Alternatively, true AGI has been reached, and the machines decided to delete themselves Parts of Microsoft’s Bing are still offline in Europe after it fell over earlier this morning, taking down Copilot and anything else that depends on the search service’s API.……


  • GNU Compiler Collection 15 ushers Xeon Phi and Solaris 11.3 to silicon heaven

    GNU Compiler Collection 15 ushers Xeon Phi and Solaris 11.3 to silicon heaven 2024-05-23 at 13:16 By Liam Proven Remember Intel’s ‘Larrabee’ many-core Pentium-based GPU? GCC doesn’t After dropping Itanium support, GCC 15 is set to kill off more ancient platforms, with the Xeon Phi facing the firing squad alongside the penultimate version of Solaris.……


  • GitHub fixes maximum severity Enterprise Server auth bypass bug (CVE-2024-4985)

    GitHub fixes maximum severity Enterprise Server auth bypass bug (CVE-2024-4985) 2024-05-23 at 13:16 By Zeljka Zorz A critical, 10-out-of-10 vulnerability (CVE-2024-4985) allowing unrestricted access to vulnerable GitHub Enterprise Server (GHES) instances has been fixed by Microsoft-owned GitHub. Fortunately, there is a catch that may narrow down the pool of potential victims: instances are vulnerable to…


  • Using AI, Mastercard Expects to Find Compromised Cards Quicker, Before They Get Used by Criminals

    Using AI, Mastercard Expects to Find Compromised Cards Quicker, Before They Get Used by Criminals 2024-05-23 at 13:16 By Associated Press Mastercard is integrating AI into its fraud-prediction technology that it expects will be able to see patterns in stolen cards faster and allow banks to replace them before they are used by criminals. The…


  • Council fumbles Oracle Fusion launch, leaving SAP to die another day

    Council fumbles Oracle Fusion launch, leaving SAP to die another day 2024-05-23 at 12:47 By Lindsay Clark More than four years after procurement began, authority has no go-live date East Sussex County Council is conducting “a further health check of the system and programme” after it failed to go live with Oracle Fusion, its replacement…


  • Ivanti Patches Critical Remote Code Execution Flaws in Endpoint Manager

    Ivanti Patches Critical Remote Code Execution Flaws in Endpoint Manager 2024-05-23 at 12:47 By Ivanti on Tuesday rolled out fixes to address multiple critical security flaws in Endpoint Manager (EPM) that could be exploited to achieve remote code execution under certain circumstances. Six of the 10 vulnerabilities – from CVE-2024-29822 through CVE-2024-29827 (CVSS scores: 9.6) – relate…


  • TR-069, a protocol that made broadband manageable, turns 20. What’s coming next?

    TR-069, a protocol that made broadband manageable, turns 20. What’s coming next? 2024-05-23 at 12:16 By Brandon Vigliarolo In less than 13 minutes, we’ll get you up to speed on USP Interview  Technical report 69, or TR-069, which defines how people’s broadband routers and other customer-premises equipment can be remotely provisioned and managed by ISPs…


  • OneTrust helps organizations meet the framework requirements

    OneTrust helps organizations meet the framework requirements 2024-05-23 at 12:01 By Industry News OneTrust announced the expansion of OneTrust solutions to help organizations drive operational resilience and risk management across their extended enterprise, as well as comply with regulations like the European Union’s (EU) Digital Operational Resilience Act (DORA). Through DORA, the EU seeks to…


  • UK data watchdog wants six figures from N Ireland cops after 2023 data leak

    UK data watchdog wants six figures from N Ireland cops after 2023 data leak 2024-05-23 at 11:46 By Connor Jones Massive discount applied to save cop shop’s helicopter budget Following a data leak that brought “tangible fear of threat to life”, the UK’s data protection watchdog says it intends to fine the Police Service of…


  • Ransomware Menace Amplifies for Vulnerable Industrial Control Systems: Heightened Threats to Critical Infrastructure 

    Ransomware Menace Amplifies for Vulnerable Industrial Control Systems: Heightened Threats to Critical Infrastructure  2024-05-23 at 11:01 By neetha871ad236bd Ransomhub Targets SCADA of Spanish Bio Energy Plant  The protection of Industrial Control Systems (ICS) has emerged as a significant concern across all sectors. The security challenges surrounding ICS environments and the essential measures needed to protect…


  • SOCRadar raises $25.2 million to accelerate investments in key areas

    SOCRadar raises $25.2 million to accelerate investments in key areas 2024-05-23 at 11:01 By Industry News SOCRadar announced the successful completion of its Series B funding round, raising $25.2 million. The round was led by PeakSpan Capital, with participation from Oxx, reflecting investor confidence in SOCRadar’s innovative approach to cybersecurity. External cybersecurity has rapidly escalated…


  • Ransomware Menace Amplify for Vulnerable Industrial Control Systems: Heightens Threats to Critical Infrastructure 

    Ransomware Menace Amplify for Vulnerable Industrial Control Systems: Heightens Threats to Critical Infrastructure  2024-05-23 at 10:46 By neetha871ad236bd Ransomhub Targets SCADA of Spanish Bio Energy Plant  The protection of Industrial Control Systems (ICS) has emerged as a significant concern across all sectors. The security challenges surrounding ICS environments and the essential measures needed to protect…


  • I stumbled upon LLM Kryptonite – and no one wants to fix this model-breaking bug

    I stumbled upon LLM Kryptonite – and no one wants to fix this model-breaking bug 2024-05-23 at 10:31 By Mark Pesce Models with flaws can be harmless … yet dangerous. So why are reports of problems being roundly ignored? Feature  Imagine a brand new and nearly completely untested technology, capable of crashing at any moment…


  • HHS pledges $50M for autonomous vulnerability management solution for hospitals

    HHS pledges $50M for autonomous vulnerability management solution for hospitals 2024-05-23 at 10:18 By Zeljka Zorz As organizations in the healthcare sector continue to be a prime target for ransomware gangs and CISA warns about a vulnerability (CVE-2023-43208) in a healthcare-specific platform being leveraged by attackers, the Advanced Research Projects Agency for Health (ARPA-H) has…


  • How Apple Wi-Fi Positioning System can be abused to track people around the globe

    How Apple Wi-Fi Positioning System can be abused to track people around the globe 2024-05-23 at 09:51 By Thomas Claburn SpaceX is smart on this, Cupertino and GL.iNet not so much In-depth  Academics have suggested that Apple’s Wi-Fi Positioning System (WPS) can be abused to create a global privacy nightmare.… This article is an excerpt…


  • Would you buy Pegasus spyware from this scammer?

    Would you buy Pegasus spyware from this scammer? 2024-05-23 at 09:01 By Laura Dobberstein You shouldn’t – Indian infosec researchers warn you’ll get random junk instead Indian infosec firm CloudSEK warned on Wednesday that scammers are selling counterfeit code advertised as the NSO Group’s notorious Pegasus spyware.… This article is an excerpt from The Register…


  • The End of an Era: Microsoft Phases Out VBScript for JavaScript and PowerShell

    The End of an Era: Microsoft Phases Out VBScript for JavaScript and PowerShell 2024-05-23 at 08:46 By Microsoft on Wednesday outlined its plans to deprecate Visual Basic Script (VBScript) in the second half of 2024 in favor of more advanced alternatives such as JavaScript and PowerShell. “Technology has advanced over the years, giving rise to…


  • Read AI about it… OpenAI does deal with News Corp

    Read AI about it… OpenAI does deal with News Corp 2024-05-23 at 08:31 By Thomas Claburn Pact made with WSJ, New York Post, Sunday Times, Australian publisher as lawsuit bullets ping around the industry OpenAI and News Corp on Wednesday announced a partnership that will bring the publisher’s output to the super-lab’s models, marking yet…


  • CISOs pursuing AI readiness should start by updating the org’s email security policy

    CISOs pursuing AI readiness should start by updating the org’s email security policy 2024-05-23 at 08:03 By Anamarija Pogorelec Over the past few years, traditional phishing messages — with their pervasive linguistic errors, thinly-veiled malicious payloads, and often outlandish pretexts — have been on the decline. Easily detected by most of today’s standard email security…


  • China creates LLM trained to discuss Xi Jinping’s philosophies

    China creates LLM trained to discuss Xi Jinping’s philosophies 2024-05-23 at 07:47 By Simon Sharwood What next? Kim-Jong-AI? Don’t laugh – Nvidia has pondered rebuilding a digital Napoleon China’s Cyberspace Research Institute has revealed it’s created a large language model and conversational AI based on the philosophies of president Xi Jinping.… This article is an…


  • Strategies for transitioning to a SASE architecture

    Strategies for transitioning to a SASE architecture 2024-05-23 at 07:33 By Mirko Zorz In this Help Net Security, Prakash Mana, CEO at Cloudbrink, discusses the primary challenges companies face when transitioning to a SASE architecture and how to overcome them. What are companies’ primary challenges when transitioning to a SASE architecture, and how can they…


  • New rules prompt 93% of organizations to rethink cybersecurity plans

    New rules prompt 93% of organizations to rethink cybersecurity plans 2024-05-23 at 07:16 By A new report examines how security budgets and compliance strategies are impacted by the shifting regulatory landscape. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source React to this headline:


  • ‘China-aligned’ spyware slingers operating since 2018 unmasked at last

    ‘China-aligned’ spyware slingers operating since 2018 unmasked at last 2024-05-23 at 07:01 By Matthew Connatser Unfading Sea Haze adept at staying under the radar Bitdefender says it has tracked down and exposed an online gang that has been operating since 2018 nearly without a trace – and likely working for Chinese interests.… This article is…


  • Ransomware fallout: 94% experience downtime, 40% face work stoppage

    Ransomware fallout: 94% experience downtime, 40% face work stoppage 2024-05-23 at 07:01 By Help Net Security Within the last 12 months, 48% of organizations identified evidence of a successful breach within their environment, according to Arctic Wolf. To fully understand the gravity of this statistic, it is important to understand that, although 48% of these…


  • 2024 sees continued increase in ransomware activity

    2024 sees continued increase in ransomware activity 2024-05-23 at 06:31 By Help Net Security In this Help Net Security video, Ryan Bell, Threat Intelligence Manager at Corvus Insurance, discusses how ransomware will continue to grow in 2024. In January, Corvus reported that global ransomware attacks in 2023 set a record high, surpassing 2022 by nearly…


  • Machine identities lack essential security controls, pose major threat

    Machine identities lack essential security controls, pose major threat 2024-05-23 at 06:01 By Help Net Security Siloed approaches to securing human and machine identities are driving identity-based attacks across enterprises and their ecosystems, according to CyberArk. The CyberArk 2024 Identity Security Threat Landscape Report was conducted across private and public sector organizations of 500 employees…


  • Lawmakers advance bill to tighten White House grip on AI model exports

    Lawmakers advance bill to tighten White House grip on AI model exports 2024-05-23 at 03:22 By Tobias Mann Vague ML definitions subject to change – yeah, great The House Foreign Affairs Committee voted Wednesday to advance a law bill expanding the White House’s authority to police exports of AI systems – including models said to…


  • Microsoft invites punters to test drive custom Arm-based Cobalt 100 CPU VMs in Azure

    Microsoft invites punters to test drive custom Arm-based Cobalt 100 CPU VMs in Azure 2024-05-23 at 02:46 By Matthew Connatser Subscribers in US, Europe, SEA can take silicon out for a spin for free Microsoft is bringing its custom-designed Arm-based Cobalt 100 processors closer to the public as it is now demoing the chips in…


  • FCC boss wants political ads to admit when they were made using AI

    FCC boss wants political ads to admit when they were made using AI 2024-05-23 at 01:47 By Matthew Connatser How about just flag up the adverts not using machine learning The Federal Communications Commission is considering a proposal that would require US political ads to disclose their usage of AI technology.… This article is an…


  • Go after UnitedHealth, not us, 100+ medical groups urge Uncle Sam

    Go after UnitedHealth, not us, 100+ medical groups urge Uncle Sam 2024-05-23 at 01:16 By Jessica Lyons Why should we get its paperwork? More than 100 medical industry groups have asked the Feds to make UnitedHealth Group, not them, go through the rigmarole of notifying everyone about the Change Healthcare ransomware infection.… This article is…


  • It looks a lot like VMware just lost a 24,000-VM customer

    It looks a lot like VMware just lost a 24,000-VM customer 2024-05-23 at 00:01 By Simon Sharwood Computershare CTO says he got a bill 15 times his previous quote Next  Global stock-market share registry operator Computershare looks like it has just decided to bail from VMware rather than suffer Broadcom’s latest licensing regime and price…


  • Nvidia’s future in scientific computing hinges on a melding of AI and HPC

    Nvidia’s future in scientific computing hinges on a melding of AI and HPC 2024-05-22 at 23:46 By Tobias Mann But if they can’t, AMD is well positioned to mop up Analysis  Nvidia had quite the showing at the International Supercomputing show in Hamburg last week. Its GH200 claimed a spot among the 10 most powerful…


Browse older archives

Scroll to Top