Cybersecurity and other IT news aggregator

LATEST FEEDS

  • Fiend touts stolen Neiman Marcus customer info for $150K

    Fiend touts stolen Neiman Marcus customer info for $150K 2024-06-25 at 23:31 By Jessica Lyons Flash clobber chain fashionably late to Snowflake fiasco party Customer information said to have been stolen from Neiman Marcus’s Snowflake instance has been put up for sale on the dark web for $150,000.… This article is an excerpt from The…


  • OpenAI to pull plug on ‘unsupported’ nations like China from July 9

    OpenAI to pull plug on ‘unsupported’ nations like China from July 9 2024-06-25 at 22:18 By Matthew Connatser It’s not entirely clear what actions the ChatGPT maker plans to take, if any ChatGPT developer OpenAI has sent out emails to users based in countries it considers “unsupported,” saying it will block their access for good…


  • Crypto scammers circle back, pose as lawyers, steal an extra $10M in truly devious plan

    Crypto scammers circle back, pose as lawyers, steal an extra $10M in truly devious plan 2024-06-25 at 21:46 By Connor Jones Business is more lucrative than you might think The FBI says in just 12 months, scumbags stole circa $10 million from victims of crypto scams after posing as helpful lawyers offering to recover their…


  • Progress quietly fixes MOVEit auth bypass flaws (CVE-2024-5805, CVE-2024-5806)

    Progress quietly fixes MOVEit auth bypass flaws (CVE-2024-5805, CVE-2024-5806) 2024-06-25 at 21:16 By Zeljka Zorz Progress Software has patched one critical (CVE-2024-5805) and one high-risk (CVE-2024-5806) vulnerability in MOVEit, its widely used managed file transfer (MFT) software product. According to WatchTowr Labs researchers, the company has been privately instructing users to implement the hotfixes before…


  • And that’s 3 recalls for Tesla Cybertruck in as many months

    And that’s 3 recalls for Tesla Cybertruck in as many months 2024-06-25 at 21:01 By Brandon Vigliarolo Now windshield wipers are failing and trim is detaching of its own accord Tesla has issued two more physical Cybertruck recalls, bringing the total number of hardware issues the company has had to fix on the troubled vehicle…


  • Oracle fears that US TikTok ban would dent its cloud profits

    Oracle fears that US TikTok ban would dent its cloud profits 2024-06-25 at 20:16 By Dan Robinson ByteDance may not be the only company hurt by a US ban on TikTok: Oracle put a warning in its recently filed annual report that such a move could hit its revenue and profits as a provider of…


  • 87% of consumers say brands are responsible for privacy protections

    87% of consumers say brands are responsible for privacy protections 2024-06-25 at 19:47 By Nearly all Americans (87%) believe brands are responsible for protecting users’ digital privacy in the age of artificial intelligence (AI). This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source React to this headline:


  • SAP customers warned on hidden risks in the unofficial route to the cloud

    SAP customers warned on hidden risks in the unofficial route to the cloud 2024-06-25 at 19:31 By Lindsay Clark But RISE with SAP can also be too rigid for some customers, Gartner says SAP customers looking for infrastructure support for ERP software from community cloud, cloud-like, or former co-location providers should do so with care,…


  • How to tackle burnout at the source in the security operations center

    How to tackle burnout at the source in the security operations center 2024-06-25 at 19:16 By As organizations face internal and external pressures, burnout among security professionals has hit worrying levels — leaving many heading for the door. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source React to…


  • Nvidia loses a cool $500B as market questions AI boom

    Nvidia loses a cool $500B as market questions AI boom 2024-06-25 at 18:46 By Dan Robinson Cisco was briefly the world’s most valuable company too, you know, just before the dot com bust Nvidia has rapidly lost about $500 billion off its market capitalization amid concerns that the GPU maker may have become overvalued or…


  • EU Sanctions Six Russian Hackers

    EU Sanctions Six Russian Hackers 2024-06-25 at 18:16 By Eduard Kovacs The European Council has added six Russian hackers to the EU’s sanctions list for their cyberattacks against member states and Ukraine. The post EU Sanctions Six Russian Hackers appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source…


  • Andrew Tanenbaum honored for pioneering MINIX, the OS hiding in a lot of computers

    Andrew Tanenbaum honored for pioneering MINIX, the OS hiding in a lot of computers 2024-06-25 at 17:46 By Liam Proven Software System Award recognises his contributions to education Andy Tanenbaum, creator of MINIX, has been recognized for his code, seminal textbooks, and wider educational influence over much of the modern FOSS world.… This article is…


  • CISA says crooks used Ivanti bugs to snoop around high-risk chemical facilities

    CISA says crooks used Ivanti bugs to snoop around high-risk chemical facilities 2024-06-25 at 17:01 By Connor Jones Crafty crims broke in but encryption stopped any nastiness US cybersecurity agency CISA is urging high-risk chemical facilities to secure their online accounts after someone broke into its Chemical Security Assessment Tool (CSAT) portal.… This article is…


  • eSentire introduces MDR for GenAI Visibility

    eSentire introduces MDR for GenAI Visibility 2024-06-25 at 17:01 By Industry News Leveraging security telemetry across an organization’s log and network data sources, eSentire’s MDR for GenAI Visibility solution provides daily insights into an organization’s use of GenAI technology, including the most frequently used AI applications, the users of the technology, the prompts, and the…


  • Recent Zyxel NAS Vulnerability Exploited by Botnet

    Recent Zyxel NAS Vulnerability Exploited by Botnet 2024-06-25 at 16:46 By Ionut Arghire A Mirai-like botnet has started exploiting a critical-severity vulnerability in discontinued Zyxel NAS products. The post Recent Zyxel NAS Vulnerability Exploited by Botnet appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to this…


  • Indonesia Says a Cyberattack Has Compromised Its Data Center but It Won’t Pay the $8 Million Ransom

    Indonesia Says a Cyberattack Has Compromised Its Data Center but It Won’t Pay the $8 Million Ransom 2024-06-25 at 16:46 By Associated Press Indonesia’s national data center has been compromised by a hacking group asking for a $8 million ransom that the government won’t pay. The post Indonesia Says a Cyberattack Has Compromised Its Data…


  • VMware by Broadcom makes its stack easier to live with, as promised

    VMware by Broadcom makes its stack easier to live with, as promised 2024-06-25 at 16:16 By Simon Sharwood Compute, storage, and networking virtualization brought together – with live ESXi patching VMware by Broadcom has previewed an update to its flagship Cloud Foundation and vSphere Foundation bundles that appear to deliver on past promises to make…


  • TGS President Bill Rucker Honored by MeriTalk with Its 2024 Cyber Defenders Award

    TGS President Bill Rucker Honored by MeriTalk with Its 2024 Cyber Defenders Award 2024-06-25 at 16:01 By For the fourth consecutive year, Trustwave Government Solutions (TGS) President Bill Rucker was honored by MeriTalk with its Cyber Defenders Award. This article is an excerpt from Trustwave Blog View Original Source React to this headline:


  • Atlas Oil: The Consequences of a Ransomware Attack

    Atlas Oil: The Consequences of a Ransomware Attack 2024-06-25 at 16:01 By Arthur Erzberger Overview Atlas Oil, a major player in the oil and fuel distribution industry, fell victim to a ransomware attack orchestrated by the Black Basta group. This attack not only compromised sensitive company data but also exposed a variety of documents that…


  • Hackers Steal Over $2 Million in Cryptocurrency From CoinStats Wallets

    Hackers Steal Over $2 Million in Cryptocurrency From CoinStats Wallets 2024-06-25 at 16:01 By Ionut Arghire CoinStats says North Korean hackers drained $2 million in virtual assets from 1,590 cryptocurrency wallets. The post Hackers Steal Over $2 Million in Cryptocurrency From CoinStats Wallets appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS…


  • Several Plugins Compromised in WordPress Supply Chain Attack 

    Several Plugins Compromised in WordPress Supply Chain Attack  2024-06-25 at 16:01 By Ionut Arghire Five WordPress plugins were injected with malicious code that creates a new administrative account. The post Several Plugins Compromised in WordPress Supply Chain Attack  appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React…


  • EU accuses Microsoft of antitrust violations for bundling Teams with O365

    EU accuses Microsoft of antitrust violations for bundling Teams with O365 2024-06-25 at 15:46 By Paul Kunert Statement of Objections sent to Redmond HQ following probe that began July 2023 Microsoft broke the European Union’s antitrust regulations by “tying” collaboration tool Teams to its dominant online Office productivity suite, according to preliminary findings from an…


  • UK and US cops band together to tackle Qilin’s ransomware shakedowns

    UK and US cops band together to tackle Qilin’s ransomware shakedowns 2024-06-25 at 15:16 By Jessica Lyons Attacking the NHS is a very bad move UK and US cops have reportedly joined forces to find and fight Qilin, the ransomware gang wreaking havoc on the global healthcare industry.… This article is an excerpt from The…


  • Omdia Report: Trend Disclosed 60% of Vulnerabilities

    Omdia Report: Trend Disclosed 60% of Vulnerabilities 2024-06-25 at 15:16 By The latest Omdia Vulnerability Report shows Trend MicroTM Zero Day InitiativeTM (ZDI) spearheaded 60% of 2023 disclosures, underscoring its role in cybersecurity threat prevention. This article is an excerpt from Trend Micro Research, News and Perspectives View Original Source React to this headline:


  • Meta’s Virtual Reality Headset Vulnerable to Ransomware Attacks: Researcher

    Meta’s Virtual Reality Headset Vulnerable to Ransomware Attacks: Researcher 2024-06-25 at 15:01 By Kevin Townsend Researcher shows how hackers could use social engineering to deliver ransomware and other malware to Meta’s Quest 3 VR headset. The post Meta’s Virtual Reality Headset Vulnerable to Ransomware Attacks: Researcher appeared first on SecurityWeek. This article is an excerpt…


  • Ransomware disrupts Indonesia’s national data centre, LockBit gang claims US Federal Reserve breach

    Ransomware disrupts Indonesia’s national data centre, LockBit gang claims US Federal Reserve breach 2024-06-25 at 14:46 By Zeljka Zorz Ransomware attackers wielding a LockBit variant dubbed Brain Cipher have disrupted a temporary national data center facility which supports the operations of 200+ Indonesian government agencies and public services. The attackers are asking for a $8…


  • New Attack Technique Exploits Microsoft Management Console Files

    New Attack Technique Exploits Microsoft Management Console Files 2024-06-25 at 14:46 By Threat actors are exploiting a novel attack technique in the wild that leverages specially crafted management saved console (MSC) files to gain full code execution using Microsoft Management Console (MMC) and evade security defenses. Elastic Security Labs has codenamed the approach GrimResource after…


  • On-prem AI has arrived – the solution to cloudy problems no one really has

    On-prem AI has arrived – the solution to cloudy problems no one really has 2024-06-25 at 14:33 By Brandon Vigliarolo Which isn’t to say Nvidia and hyperscalers will win, says analyst Steve Brazier, as regulators circle HPE discover  Walking the floor at HPE’s Discover show in Las Vegas last week, this vulture was left with…


  • Intel investor sues over Foundry flop, seeks to reforge corporate governance

    Intel investor sues over Foundry flop, seeks to reforge corporate governance 2024-06-25 at 13:47 By Dan Robinson Lawsuit demands big changes and a little transparency in reporting Intel executives have been hit by a shareholder derivative lawsuit from an investor alleging that they and others were misled regarding the financial performance of the company’s foundry…


  • UAC-0184 Abuses Python in DLL Sideloading for XWORM Distribution 

    UAC-0184 Abuses Python in DLL Sideloading for XWORM Distribution  2024-06-25 at 13:46 By Neetha Key Takeaways  Overview  CRIL recently observed a malware campaign targeting Ukraine using the Remote Access Trojan (RAT) known as XWorm. Upon investigation, it was found that this campaign is associated with the Threat Actor (TA) group UAC-0184. Previously, UAC-0184 has targeted…


  • Car Dealerships in North America Revert to Pens and Paper After Cyberattacks on Software Provider

    Car Dealerships in North America Revert to Pens and Paper After Cyberattacks on Software Provider 2024-06-25 at 13:46 By Associated Press Car dealerships in North America are still wrestling with major disruptions that started last week with cyberattacks on a company whose software is used widely in the auto retail sales sector. The post Car…


  • How to Cut Costs with a Browser Security Platform

    How to Cut Costs with a Browser Security Platform 2024-06-25 at 13:46 By Browser security is becoming increasingly popular, as organizations understand the need to protect at the point of risk – the browser. Network and endpoint solutions are limited in their ability to protect from web-borne threats like phishing websites or malicious browser extensions.…


  • New security loophole allows spying on internet users’ online activity

    New security loophole allows spying on internet users’ online activity 2024-06-25 at 13:16 By Help Net Security Researchers at Graz University of Technology were able to spy on users’ online activities simply by monitoring fluctuations in the speed of their internet connection. This vulnerability, known as SnailLoad, does not require malicious code to exploit, and…


  • Malware Sandbox Any.Run Targeted in Phishing Attack

    Malware Sandbox Any.Run Targeted in Phishing Attack 2024-06-25 at 13:16 By Eduard Kovacs Employees of the Any.Run malware analysis service were recently targeted in a phishing attack that was part of a BEC campaign. The post Malware Sandbox Any.Run Targeted in Phishing Attack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS…


  • GenAI dominates the narrative in ERP, but what is it good for?

    GenAI dominates the narrative in ERP, but what is it good for? 2024-06-25 at 12:46 By Lindsay Clark Low-code and report production vie for early use cases, but risks remain With vendors obsessed with adding generative AI to everything, does it really have a place in ERP software? It’s very early days, say analysts at…


  • Neiman Marcus Data Breach Disclosed as Hacker Offers to Sell Stolen Information

    Neiman Marcus Data Breach Disclosed as Hacker Offers to Sell Stolen Information 2024-06-25 at 12:06 By Eduard Kovacs Neiman Marcus has disclosed a data breach impacting 64,000 people just as a hacker announced the sale of customer data. The post Neiman Marcus Data Breach Disclosed as Hacker Offers to Sell Stolen Information appeared first on…


  • Humanity’s satellite habit could end up choking Earth’s ozone layer

    Humanity’s satellite habit could end up choking Earth’s ozone layer 2024-06-25 at 11:56 By Dan Robinson Just when you think we’ve solved chlorofluorocarbons Large numbers of low Earth orbit satellites such as those operated by Starlink could pose a threat to the planet’s ozone layer once they re-enter the atmosphere, according to recent research.… This…


  • South Korean Lithium battery plant takes at least 23 lives

    South Korean Lithium battery plant takes at least 23 lives 2024-06-25 at 11:01 By Laura Dobberstein National Fire Agency responds with inspection of 213 battery-related workplaces A fire at a lithium battery manufacturing plant in Hwaseong, South Korea on Monday killed at least 23 people and injured eight others.… This article is an excerpt from…


  • Chrome 126 Update Patches Memory Safety Bugs

    Chrome 126 Update Patches Memory Safety Bugs 2024-06-25 at 11:01 By Ionut Arghire Google has released a Chrome security update to resolve four high-severity use-after-free vulnerabilities. The post Chrome 126 Update Patches Memory Safety Bugs appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to this headline:


  • Ooredoo to splash Nvidia GPUs across the Middle East

    Ooredoo to splash Nvidia GPUs across the Middle East 2024-06-25 at 10:31 By Tobias Mann Qatari telco reckons deal will give it an 18–24 month lead in region Amid US restrictions curbing the export of certain high-end AI accelerators to much of the Middle East, Silicon Valley’s Nvidia has reached an agreement to furnish Qatari…


  • Airbn-bye: Barcelona bans short-term apartment rentals for tourists

    Airbn-bye: Barcelona bans short-term apartment rentals for tourists 2024-06-25 at 09:31 By Brandon Vigliarolo Spanish sublet shock solution to housing crisis Tourists in the Spanish city of Barcelona will have fewer lodging options come 2028, as the city has decided to evict operators of short-term apartment rentals. … This article is an excerpt from The Register…


  • Wikileaks’ Julian Assange Released from U.K. Prison, Heads to Australia

    Wikileaks’ Julian Assange Released from U.K. Prison, Heads to Australia 2024-06-25 at 09:01 By WikiLeaks founder Julian Assange has been freed in the U.K. and has departed the country after serving more than five years in a maximum security prison at Belmarsh for what was described by the U.S. government as the “largest compromises of…


  • Alibaba Cloud unleashes thousands of Chinese AI models to the world

    Alibaba Cloud unleashes thousands of Chinese AI models to the world 2024-06-25 at 08:31 By Simon Sharwood Like Bedrock or Azure OpenAI Studio – but with the added fun of geopolitical risk Alibaba Cloud has created an English language version of Modelscope, its models-as-service offering.… This article is an excerpt from The Register View Original…


  • Empowering remote healthcare workers: A collaborative approach

    Empowering remote healthcare workers: A collaborative approach 2024-06-25 at 07:16 By Healthcare organizations are increasingly adopting remote work as a permanent strategy. In this new era, robust cybersecurity is critical. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source React to this headline:


  • Zeek: Open-source network traffic analysis, security monitoring

    Zeek: Open-source network traffic analysis, security monitoring 2024-06-25 at 07:01 By Mirko Zorz Zeek is an open-source network analysis framework. Unlike an active security device such as a firewall, Zeek operates on a versatile ‘sensor’ that can be a hardware, software, virtual, or cloud platform. This flexibility allows Zeek to quietly monitor network traffic, interpret…


  • 4 FIN9-linked Vietnamese Hackers Indicted in $71M U.S. Cybercrime Spree

    4 FIN9-linked Vietnamese Hackers Indicted in $71M U.S. Cybercrime Spree 2024-06-25 at 07:01 By Four Vietnamese nationals with ties to the FIN9 cybercrime group have been indicted in the U.S. for their involvement in a series of computer intrusions that caused over $71 million in losses to companies. The defendants, Ta Van Tai (aka Quynh…


  • Multiple WordPress Plugins Compromised: Hackers Create Rogue Admin Accounts

    Multiple WordPress Plugins Compromised: Hackers Create Rogue Admin Accounts 2024-06-25 at 07:01 By Multiple WordPress plugins have been backdoored to inject malicious code that makes it possible to create rogue administrator accounts with the aim of performing arbitrary actions. “The injected malware attempts to create a new administrative user account and then sends those details…


  • CISOs’ new ally: Qualys CyberSecurity Asset Management 3.0

    CISOs’ new ally: Qualys CyberSecurity Asset Management 3.0 2024-06-25 at 06:31 By Mirko Zorz In this Help Net Security interview, Kunal Modasiya, VP of Product Management and Growth at Qualys, explores the key features, significant advantages, and innovative technologies behind Qualys CyberSecurity Asset Management 3.0. Can you explain the key features of Qualys CyberSecurity Asset…


  • Breaking down the numbers: Q2 2024 cybersecurity funding activity recap

    Breaking down the numbers: Q2 2024 cybersecurity funding activity recap 2024-06-25 at 06:01 By Help Net Security We present a list of selected cybersecurity companies that received funding during the second quarter of 2024 (Q2 2024). Alethea April | $20 million Alethea closed a $20 million Series B funding round led by GV, with participation…


  • Guide to mitigating credential stuffing attacks

    Guide to mitigating credential stuffing attacks 2024-06-25 at 05:46 By Help Net Security We have a collective unaddressed weakness when it comes to basic cybersecurity. Out of the many reports circulating in the news today, many statistics revolve around the number of detected breaches. Why are credentials so sought after? How can we communicate the…


Browse older archives

Scroll to Top