Cybersecurity and other IT news aggregator
LATEST FEEDS
-
Google slammed for ‘woke’ new Christmas ad starring ‘nonbinary’ beauty influencer
Google slammed for ‘woke’ new Christmas ad starring ‘nonbinary’ beauty influencer 2024-12-12 at 20:05 By Fox Business The online ad for Google Shopping showcases rising TikTok star Cyrus Veyssi searching for skincare products with the Google service. This article is an excerpt from Latest Technology News and Product Reviews | New York Post View Original…
-
Cruise shutdown blastzone increases – Microsoft takes $800M charge
Cruise shutdown blastzone increases – Microsoft takes $800M charge 2024-12-12 at 19:49 By Richard Speed General Motors pulling the plug on autonomous taxi biz hits Redmond in the wallet Microsoft is among those in the blast radius of General Motors’ decision to wind up its autonomous taxi business, Cruise.… This article is an excerpt from…
-
Cleo patches zero-day exploited by ransomware gang
Cleo patches zero-day exploited by ransomware gang 2024-12-12 at 18:34 By Zeljka Zorz Cleo has released a security patch to address the critical vulnerability that started getting exploited while still a zero-day to breach internet-facing Cleo Harmony, VLTrader, and LexiCom instances. Version 5.8.0.24 of the three products, which was pushed out on Wednesday, plugs the…
-
Google thinks the grid can’t support AI, so it’s spending on solar for future datacenters
Google thinks the grid can’t support AI, so it’s spending on solar for future datacenters 2024-12-12 at 17:48 By Brandon Vigliarolo Deal with Intersect Power will see gigawatts of compute capacity come online Google believes the US electricity grid can’t deliver the energy needed to power datacenters that deliver AI services, so has formed an…
-
Mark Zuckerberg’s Meta donates $1M to Trump’s inaugural fund
Mark Zuckerberg’s Meta donates $1M to Trump’s inaugural fund 2024-12-12 at 17:04 By Ariel Zilber Zuckerberg is one of several tech executives who are looking to make nice with Trump just weeks before he begins his second term. This article is an excerpt from Latest Technology News and Product Reviews | New York Post View…
-
CISA Enhances Public Safety Communications with Seven New Resources in Cyber Resiliency Toolkit
CISA Enhances Public Safety Communications with Seven New Resources in Cyber Resiliency Toolkit 2024-12-12 at 17:03 By daksh sharma Overview The Cybersecurity and Infrastructure Security Agency (CISA) has recently updated its Public Safety Communications and Cyber Resiliency Toolkit, adding seven new resources aimed at enhancing the resilience and security of public safety communications across the…
-
Over 300K Prometheus Instances Exposed: Credentials and API Keys Leaking Online
Over 300K Prometheus Instances Exposed: Credentials and API Keys Leaking Online 2024-12-12 at 16:48 By Cybersecurity researchers are warning that thousands of servers hosting the Prometheus monitoring and alerting toolkit are at risk of information leakage and exposure to denial-of-service (DoS) as well as remote code execution (RCE) attacks. “Prometheus servers or exporters, often lacking…
-
Gamaredon Deploys Android Spyware “BoneSpy” and “PlainGnome” in Former Soviet States
Gamaredon Deploys Android Spyware “BoneSpy” and “PlainGnome” in Former Soviet States 2024-12-12 at 16:48 By The Russia-linked state-sponsored threat actor tracked as Gamaredon has been attributed to two new Android spyware tools called BoneSpy and PlainGnome, marking the first time the adversary has been discovered using mobile-only malware families in its attack campaigns. “BoneSpy and…
-
Apache issues patches for critical Struts 2 RCE bug
Apache issues patches for critical Struts 2 RCE bug 2024-12-12 at 15:33 By Connor Jones More details released after devs allowed weeks to apply fixes We now know the remote code execution vulnerability in Apache Struts 2 disclosed back in November carries a near-maximum severity rating following the publication of the CVE.… This article is…
-
Researchers Uncover Symlink Exploit Allowing TCC Bypass in iOS and macOS
Researchers Uncover Symlink Exploit Allowing TCC Bypass in iOS and macOS 2024-12-12 at 14:51 By Details have emerged about a now-patched security vulnerability in Apple’s iOS and macOS that, if successfully exploited, could sidestep the Transparency, Consent, and Control (TCC) framework and result in unauthorized access to sensitive information. The flaw, tracked as CVE-2024-44131 (CVSS…
-
SaaS Budget Planning Guide for IT Professionals
SaaS Budget Planning Guide for IT Professionals 2024-12-12 at 14:51 By SaaS services are one of the biggest drivers of OpEx (operating expenses) for modern businesses. With Gartner projecting $247.2 billion in global SaaS spending this year, it’s no wonder SaaS budgets are a big deal in the world of finance and IT. Efficient SaaS…
-
Lights out for 18 more DDoS booters in pre-Christmas Operation PowerOFF push
Lights out for 18 more DDoS booters in pre-Christmas Operation PowerOFF push 2024-12-12 at 14:04 By Connor Jones Holiday cheer comes in the form of three arrests and 27 shuttered domains The Europol-coordinated Operation PowerOFF struck again this week as cross-border cops pulled the plug on 27 more domains tied to distributed denial of service…
-
Hacktivist Alliances Target France Amidst Political Crisis
Hacktivist Alliances Target France Amidst Political Crisis 2024-12-12 at 14:04 By rohansinhacyblecom Executive Summary On December 6, 2024, Cyble Research & Intelligence Labs (CRIL) observed that the hacktivist alliance known as the “Holy League” on their Telegram channel declared cyberattacks against France. According to the alliance, these operations were executed in retaliation to France’s continued…
-
Krispy Kreme cybersecurity incident disrupts online ordering
Krispy Kreme cybersecurity incident disrupts online ordering 2024-12-12 at 13:39 By Zeljka Zorz Popular US doughnut chain Krispy Kreme has been having trouble with its online ordering system as well as digital payments at their brick-and-mortar shops since late November, and now we finally know why: an 8-K report filed with the US Securities and…
-
British Army zaps drones out of the sky with laser trucks
British Army zaps drones out of the sky with laser trucks 2024-12-12 at 12:40 By Dan Robinson High-energy weapon proves its mettle in testing The British Army has successfully destroyed flying drones for the first time using a high-energy laser mounted on an armored vehicle. If perfected, the technology could form an effective counter-measure against drone attacks.……
-
27 DDoS-for hire platforms seized by law enforcement
27 DDoS-for hire platforms seized by law enforcement 2024-12-12 at 12:39 By Zeljka Zorz As part of an ongoing international crackdown known as Operation PowerOFF, international law enforcement has seized over two dozen platforms used to carry out Distributed Denial-of-Service (DDoS) attacks. These “booter” (aka “stresser”) sites were used by both cybercriminals and hacktivists to…
-
WordPress Hunk Companion Plugin Flaw Exploited to Silently Install Vulnerable Plugins
WordPress Hunk Companion Plugin Flaw Exploited to Silently Install Vulnerable Plugins 2024-12-12 at 12:19 By Malicious actors are exploiting a critical vulnerability in the Hunk Companion plugin for WordPress to install other vulnerable plugins that could open the door to a variety of attacks. The flaw, tracked as CVE-2024-11972 (CVSS score: 9.8), affects all versions…
-
We must adjust expectations for the CISO role
We must adjust expectations for the CISO role 2024-12-12 at 11:52 By Help Net Security Cybersecurity has become one of the most high-stakes facets of business operations in the past few years. The chief information security officer (CISO) role, once a back-office function primarily focused on technical oversight, has moved squarely into the executive spotlight.…
-
Jetico Search locates and manages sensitive data
Jetico Search locates and manages sensitive data 2024-12-12 at 11:06 By Industry News Jetico launches Search, a PII and sensitive data discovery tool integrated with BCWipe to locate and securely erase files beyond forensic recovery. Addressing the growing demand for effective solutions in data protection, Search integrates discovery capabilities with Jetico’s renowned BCWipe software, delivering…
-
Report: New cyber scam campaign targets job seekers
Report: New cyber scam campaign targets job seekers 2024-12-12 at 11:06 By Research reveals a new cyber scam campaign targeting job seekers. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source React to this headline:
-
Firefox ditches Do Not Track because nobody was listening anyway
Firefox ditches Do Not Track because nobody was listening anyway 2024-12-12 at 10:52 By Brandon Vigliarolo Few websites actually respect the option, says Mozilla When Firefox 135 is released in February, it’ll ship with one less feature: Mozilla plans to remove the Do Not Track toggle from its Privacy and Security settings. … This article is…
-
Russia Cuts Off the Global Internet & VPNs Won’t Help
Russia Cuts Off the Global Internet & VPNs Won’t Help 2024-12-12 at 10:26 View original post at Safety Detectives Russia has started trial runs to see if the country could fully operate without relying on the global web, according to reports from European and Russian news outlets. Over the weekend, it blocked access to foreign…
-
Only Cynet delivers 100% protection and detection visibility in the 2024 MITRE ATT&CK Evaluation
Only Cynet delivers 100% protection and detection visibility in the 2024 MITRE ATT&CK Evaluation 2024-12-12 at 10:07 By Help Net Security Across small-to-medium enterprises (SMEs) and managed service providers (MSPs), the top priority for cybersecurity leaders is to keep IT environments up and running. To guard against cyber threats and prevent data breaches, it’s vital…
-
Aliens, spy balloons, or drones? SUV-sized mystery objects spotted in US skies
Aliens, spy balloons, or drones? SUV-sized mystery objects spotted in US skies 2024-12-12 at 09:33 By Jessica Lyons No word from the FBI about where they are hiding aliens or UFOs Unidentified flying objects said to be the size of sports utility vehicles have been spotted flying over parts of the northeastern US, prompting investigations…
-
Europol Dismantles 27 DDoS Attack Platforms Across 15 Nations; Admins Arrested
Europol Dismantles 27 DDoS Attack Platforms Across 15 Nations; Admins Arrested 2024-12-12 at 09:33 By A global law enforcement operation has failed 27 stresser services that were used to conduct distributed denial-of-service (DDoS) attacks and took them offline as part of a multi-year international exercise called PowerOFF. The effort, coordinated by Europol and involving 15…
-
Australia lays fiendish tax trap for Meta – with an expensive escape hatch
Australia lays fiendish tax trap for Meta – with an expensive escape hatch 2024-12-12 at 08:21 By Simon Sharwood If Zuck and other Big Tech players pay news publishers, their bills vanish Australia has created a tax that only big tech companies must pay – but which they can also legally avoid by paying money…
-
Citrix goes shopping in Europe and returns with gifts for security-conscious customers
Citrix goes shopping in Europe and returns with gifts for security-conscious customers 2024-12-12 at 07:20 By Simon Sharwood Acquires two companies that offer stuff for those on the nice list to keep naughty list types at bay Citrix has gone on a European shopping trip, and come home with its bag of gifts bulging thanks…
-
Shaping effective AI governance is about balancing innovation with humanity
Shaping effective AI governance is about balancing innovation with humanity 2024-12-12 at 07:04 By Mirko Zorz In this Help Net Security interview, Ben de Bont, CISO at ServiceNow, discusses AI governance, focusing on how to foster innovation while ensuring responsible oversight. He emphasizes the need for collaboration between technologists, policymakers, and ethicists to create ethical…
-
Security regulations and standards can impact your security career
Security regulations and standards can impact your security career 2024-12-12 at 07:04 By Today’s security professional needs to understand the nature of regulations, standards and guidelines to advance their career. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source React to this headline:
-
Exposed APIs and issues in the world’s largest organizations
Exposed APIs and issues in the world’s largest organizations 2024-12-12 at 06:32 By Help Net Security In this Help Net Security video, Tristan Kalos, CEO of Escape, discusses the results of its 2024 State of API Exposure report. The study highlights significant API security gaps affecting Fortune 1000 organizations, with over 28,500 exposed APIs and…
-
Keycloak: Open-source identity and access management
Keycloak: Open-source identity and access management 2024-12-12 at 06:04 By Help Net Security Keycloak is an open-source project for identity and access management (IAM). It provides user federation, strong authentication, user management, authorization, and more. Keycloak is based on standard protocols and supports OpenID Connect, OAuth 2.0, and SAML. Single Sign-On: Users authenticate through Keycloak…
-
China preps another rocket that Beijing hopes will become its workhorse
China preps another rocket that Beijing hopes will become its workhorse 2024-12-12 at 05:36 By Laura Dobberstein Long March-8A improves payload by forty percent and comes just a month after Long March 12 debut China is readying an upgraded and more capable rocket for its first launch, to advance its ambition of creating large constellations…
-
Epic coughs up the dirty V-Bucks: Fortnite’s ‘dark pattern’ refunds hit accounts
Epic coughs up the dirty V-Bucks: Fortnite’s ‘dark pattern’ refunds hit accounts 2024-12-12 at 04:03 By Brandon Vigliarolo Did you get your loot box? Consumers tricked into making unwanted purchases in Epic Games’ popular Fortnite title should see refunds start to hit their accounts this week, according to the US Federal Trade Commission (FTC).… This…
-
INTERPOL & Trend’s Fight Against Cybercrime
INTERPOL & Trend’s Fight Against Cybercrime 2024-12-12 at 02:51 By Trend threat intelligence and training were crucial to the success of two major policing operations in 2024 This article is an excerpt from Trend Micro Research, News and Perspectives View Original Source React to this headline:
-
Apple reportedly building AI server processor with help from Broadcom
Apple reportedly building AI server processor with help from Broadcom 2024-12-12 at 02:33 By Tobias Mann Something called ‘Baltra’ expected to make its debut in 2026, perhaps with tech both already use Apple is reportedly working with chip giant Broadcom to develop a custom server processor to power the AI services and features built into…
-
Blocking Chinese spies from intercepting calls? There ought to be a law
Blocking Chinese spies from intercepting calls? There ought to be a law 2024-12-12 at 01:17 By Jessica Lyons Sen. Wyden blasts FCC’s ‘failure’ amid Salt Typhoon hacks US telecoms carriers would be required to implement minimum cyber security standards and ensure their systems are not susceptible to hacks by nation-state attackers – like Salt Typhoon…
-
Intel turmoil prompts S&P Global to downgrade chipmaker’s credit rating
Intel turmoil prompts S&P Global to downgrade chipmaker’s credit rating 2024-12-11 at 23:34 By Tobias Mann Finance house finds x86 giant’s lack of strategy disturbing Intel’s troubles continue to compound after S&P Global on Tuesday downgraded its credit rating, citing concerns about the chipmaker’s pace of recovery and management uncertainty.… This article is an excerpt…
-
How to Optimize DLP High Speed Discovery
How to Optimize DLP High Speed Discovery 2024-12-11 at 23:20 By Atul Mahajan Provision smarter, scan faster and stay compliant with built-in reporting This article is an excerpt from Broadcom Software Blogs View Original Source React to this headline:
-
Facebook, Threads, WhatsApp, Instagram stumble on and offline in global outage
Facebook, Threads, WhatsApp, Instagram stumble on and offline in global outage 2024-12-11 at 23:05 By Iain Thomson What’s an influencer to do? Meta’s techies are likely having a bad day as the internet titan’s Facebook, WhatsApp, and Instagram are suffering some degree of downtime globally.… This article is an excerpt from The Register View Original…
-
Why incoming FTC chair Andrew Ferguson will ‘bring the heat on Big Tech’
Why incoming FTC chair Andrew Ferguson will ‘bring the heat on Big Tech’ 2024-12-11 at 21:49 By Thomas Barrabi President-elect Donald Trump’s pick of Andrew Ferguson to head the Federal Trade Commission is the latest sign that his administration plans to continue a crackdown on Big Tech bad actors that began during his first term…
-
Krispy Kreme Doughnut Corporation admits to hole in security
Krispy Kreme Doughnut Corporation admits to hole in security 2024-12-11 at 21:03 By Iain Thomson Belly-busting biz says it’s been hit by cowardly custards Doughnut slinger Krispy Kreme has admitted to an attack that has left many customers unable to order online.… This article is an excerpt from The Register View Original Source React to…
-
Facebook, Instagram and WhatsApp are down in major Meta outage
Facebook, Instagram and WhatsApp are down in major Meta outage 2024-12-11 at 20:48 By Taylor Herzlich More than 150,000 users have reported outages across Meta’s WhatsApp, Facebook and Instagram apps as of Wednesday afternoon, according to DownDetector.com. More than 96,000 Facebook users reported issues accessing the app, with reports spiking just before 1 p.m., according to…
-
China gorging on silicon before Uncle Sam slams the door
China gorging on silicon before Uncle Sam slams the door 2024-12-11 at 20:48 By Dan Robinson Chip imports up more than 14% this year in anticipation of fresh restrictions China’s semiconductor imports were up more than 14 percent in 2024 as companies in the country stockpiled ahead of widely expected fresh restrictions from Washington and…
-
Secret Blizzard Deploys Kazuar Backdoor in Ukraine Using Amadey Malware-as-a-Service
Secret Blizzard Deploys Kazuar Backdoor in Ukraine Using Amadey Malware-as-a-Service 2024-12-11 at 20:31 By The Russian nation-state actor tracked as Secret Blizzard has been observed leveraging malware associated with other threat actors to deploy a known backdoor called Kazuar on target devices located in Ukraine. The new findings come from the Microsoft threat intelligence team,…
-
Where to Watch I’m a Celebrity in 2024: UK, Australia & More
Where to Watch I’m a Celebrity in 2024: UK, Australia & More 2024-12-11 at 19:30 View original post at vpnMentor Finding all seasons of I’m a Celebrity… Get Me Out of Here can be challenging, especially if you live outside of the UK and Australia. The most recent episodes can be streamed, including for free,…
-
Good news! You’ll soon be able to send faxes again with Windows 11 24H2
Good news! You’ll soon be able to send faxes again with Windows 11 24H2 2024-12-11 at 19:19 By Richard Speed Microsoft squashes eSCL bug There is good news for Microsoft customers seeking to attach a scanner or fax machine to their Windows 11 hardware. Support for eSCL has been fixed, and a compatibility hold will…
-
MITRE ATT&CK 2024 Results for Enterprise Security
MITRE ATT&CK 2024 Results for Enterprise Security 2024-12-11 at 19:18 By Enterprise 2024 will incorporate multiple, smaller emulations for a more nuanced and targeted evaluation of defensive capabilities. We’re excited to offer two distinct adversary focus areas: Ransomware targeting Windows and Linux, and the Democratic People’s Republic of Korea’s targeting macOS. This article is an…
-
Top 5 sectors targeted with subject customization techniques
Top 5 sectors targeted with subject customization techniques 2024-12-11 at 19:18 By Research has revealed the 5 industries most frequently targeted with subject customization techniques. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source React to this headline:
-
Supreme Court tosses Nvidia appeal to dismiss shareholders’ fraud lawsuit
Supreme Court tosses Nvidia appeal to dismiss shareholders’ fraud lawsuit 2024-12-11 at 19:04 By Reuters Plaintiffs accused Nvidia and its CEO Jensen Huang of by making statements in 2017 and 2018 that falsely downplayed how much of Nvidia’s revenue growth came from crypto-related purchases. This article is an excerpt from Latest Technology News and Product…
-
Google Gemini 2.0 Flash comes out with real-time conversation, image analysis
Google Gemini 2.0 Flash comes out with real-time conversation, image analysis 2024-12-11 at 17:34 By Thomas Claburn Chocolate Factory’s latest multimodal model aims to power more trusted AI agents Google on Wednesday released Gemini 2.0 Flash, the latest addition to its AI model lineup, in the hope that developers will create agentic applications in AI…