May 2023

Prevent attackers from using legitimate tools against you

Artificial Intelligence, attacks, Don't miss, Expert analysis, Expert corner, exploit, Hot stuff, Malware, opinion, Ransomware, vulnerability, WithSecure /

Prevent attackers from using legitimate tools against you 10/05/2023 at 07:21 By Help Net Security Malicious actors are increasingly exploiting legitimate tools to accomplish their goals, which include disabling security measures, lateral movement, and transferring files. Using commonly available tools allows attackers to evade detection. While custom-built tools or malware can be flagged as malicious […]

React to this headline:

Loading spinner

Prevent attackers from using legitimate tools against you Read More »

The security and privacy risks of large language models

Don't miss, Hot stuff, Video /

The security and privacy risks of large language models 10/05/2023 at 07:00 By Help Net Security A large language model (LLM) is an artificial intelligence (AI) algorithm that employs deep learning methodologies, and extensive data sets to comprehend, condense, create, and predict new content. An example of an LLM is ChatGPT, a model developed by

React to this headline:

Loading spinner

The security and privacy risks of large language models Read More »

Dr. Victoria Ekhomu receives the 2023 Bill Zalud Memorial Award

Uncategorized /

Dr. Victoria Ekhomu receives the 2023 Bill Zalud Memorial Award 10/05/2023 at 07:00 By Dr. (Amb.) Victoria Omonigho Ekhomu has been named the 2023 recipient of the Bill Zalud Memorial Award for Professional Excellence. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source React to this headline:

React to this headline:

Loading spinner

Dr. Victoria Ekhomu receives the 2023 Bill Zalud Memorial Award Read More »

56,000+ cloud-based apps at risk of malware exfiltration

cybercrime, cybercriminals, dark web, Malware, News, passwords, SpyCloud /

56,000+ cloud-based apps at risk of malware exfiltration 10/05/2023 at 06:30 By Help Net Security The technology sector had the highest number of malware-infected employees, most exposed corporate credentials and the majority of all stolen cookies, according to SpyCloud. Drawing on SpyCloud’s database of 400+ billion recaptured assets from the criminal underground, researchers analyzed 2.27

React to this headline:

Loading spinner

56,000+ cloud-based apps at risk of malware exfiltration Read More »

Company executives can’t afford to ignore cybersecurity anymore

CISO, cybersecurity, Delinea, News, report, security metrics /

Company executives can’t afford to ignore cybersecurity anymore 10/05/2023 at 06:00 By Help Net Security Asked about the Board and C-Suite‘s understanding of cybersecurity across the organisation, only 39% of respondents think their company’s leadership has a sound understanding of cybersecurity’s role as a business enabler, according to Delinea. The high cost of ignoring security

React to this headline:

Loading spinner

Company executives can’t afford to ignore cybersecurity anymore Read More »

Microsoft Patch Tuesday: 40 Vulnerabilities, 2 Zero-Days

Vulnerabilities /

Microsoft Patch Tuesday: 40 Vulnerabilities, 2 Zero-Days 09/05/2023 at 23:23 By Ionut Arghire Microsoft’s May 2023 security updates address a total of 40 newly documented vulnerabilities, including two flaws already exploited in attacks. The post Microsoft Patch Tuesday: 40 Vulnerabilities, 2 Zero-Days appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

Microsoft Patch Tuesday: 40 Vulnerabilities, 2 Zero-Days Read More »

US Disrupts Russia’s Sophisticated ‘Snake’ Cyberespionage Malware 

Cyberwarfare, Tracking & Law Enforcement /

US Disrupts Russia’s Sophisticated ‘Snake’ Cyberespionage Malware  09/05/2023 at 23:23 By Eduard Kovacs The US government has announced the disruption of Snake, a sophisticated cyberespionage malware officially attributed to a unit of Russia’s FSB agency. The post US Disrupts Russia’s Sophisticated ‘Snake’ Cyberespionage Malware  appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

US Disrupts Russia’s Sophisticated ‘Snake’ Cyberespionage Malware  Read More »

Microsoft fixes two actively exploited bugs, one used by BlackLotus bootkit (CVE-2023-29336, CVE-2023-24932)

Automox, Don't miss, Hot stuff, Microsoft, News, Patch Tuesday, security update, SharePoint, Tenable, Trend Micro, Windows /

Microsoft fixes two actively exploited bugs, one used by BlackLotus bootkit (CVE-2023-29336, CVE-2023-24932) 09/05/2023 at 22:15 By Zeljka Zorz For May 2023 Patch Tuesday, Microsoft has delivered fixes for 38 CVE-numbered vulnerabilities, including a patch for a Windows bug (CVE-2023-29336) and a Secure Boot bypass flaw (CVE-2023-24932) exploited by attackers in the wild. The two

React to this headline:

Loading spinner

Microsoft fixes two actively exploited bugs, one used by BlackLotus bootkit (CVE-2023-29336, CVE-2023-24932) Read More »

Zscaler expands Digital Experience with AI-powered insights to support workforce productivity

Industry news, Zscaler /

Zscaler expands Digital Experience with AI-powered insights to support workforce productivity 09/05/2023 at 21:49 By Industry News Zscaler has expanded Zscaler Digital Experience (ZDX), an integrated solution that provides end-to-end visibility and IT troubleshooting capabilities accessed through the Zscaler security cloud. The modern workforce is geographically dispersed, resulting in difficulties for IT and helpdesk teams

React to this headline:

Loading spinner

Zscaler expands Digital Experience with AI-powered insights to support workforce productivity Read More »

GitHub Secret-Blocking Feature Now Generally Available

Application Security /

GitHub Secret-Blocking Feature Now Generally Available 09/05/2023 at 21:49 By Ionut Arghire GitHub makes push protection generally available to warn developers whenever they include a secret in a commit. The post GitHub Secret-Blocking Feature Now Generally Available appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to

React to this headline:

Loading spinner

GitHub Secret-Blocking Feature Now Generally Available Read More »

Adobe Patches 14 Vulnerabilities in Substance 3D Painter

Adobe, Vulnerabilities /

Adobe Patches 14 Vulnerabilities in Substance 3D Painter 09/05/2023 at 21:49 By Eduard Kovacs Adobe has patched more than a dozen vulnerabilities, including critical code execution flaws, in its Substance 3D Painter product. The post Adobe Patches 14 Vulnerabilities in Substance 3D Painter appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Adobe Patches 14 Vulnerabilities in Substance 3D Painter Read More »

U.S. Authorities Seize 13 Domains Offering Criminal DDoS-for-Hire Services

Uncategorized /

U.S. Authorities Seize 13 Domains Offering Criminal DDoS-for-Hire Services 09/05/2023 at 21:49 By U.S. authorities have announced the seizure of 13 internet domains that offered DDoS-for-hire services to other criminal actors. The takedown is part of an ongoing international initiative dubbed Operation PowerOFF that’s aimed at dismantling criminal DDoS-for-hire infrastructures worldwide. The development comes almost five months

React to this headline:

Loading spinner

U.S. Authorities Seize 13 Domains Offering Criminal DDoS-for-Hire Services Read More »

SAIC EQADR platform accelerates data driven decision making

Industry news, SAIC /

SAIC EQADR platform accelerates data driven decision making 09/05/2023 at 19:42 By Industry News SAIC introduced its new encrypted query analytics and data retrieval (EQADR) platform. “Agencies rely on data to help support their missions in a secure environment,” said Andy Henson, VP, Innovation at SAIC. “We are providing our customers with data encryption solutions

React to this headline:

Loading spinner

SAIC EQADR platform accelerates data driven decision making Read More »

Nebulon unveils threat detection solution for cryptographic ransomware

Industry news, Nebulon /

Nebulon unveils threat detection solution for cryptographic ransomware 09/05/2023 at 19:42 By Industry News Nebulon announced TripLine, a new threat detection service designed to alert customers when a cryptographic ransomware attack has been detected, as well as the precise location and point-in-time the attack occurred. The company also announced smartDefense, a cybersecurity solution that narrows

React to this headline:

Loading spinner

Nebulon unveils threat detection solution for cryptographic ransomware Read More »

OneLayer Bridge discovers, assesses, and secures IoT device activity

Industry news, OneLayer /

OneLayer Bridge discovers, assesses, and secures IoT device activity 09/05/2023 at 19:42 By Industry News OneLayer released OneLayer Bridge, a security solution for private mobile networks. The use of private cellular networks allows organizations to improve IoT and OT device connectivity. As the adoption of these networks increases, organizations must consider the essential aspect of

React to this headline:

Loading spinner

OneLayer Bridge discovers, assesses, and secures IoT device activity Read More »

ICS Patch Tuesday: Siemens, Schneider Electric Address Few Dozen Vulnerabilities

ICS, ICS/OT, Schneider Electric, Siemens /

ICS Patch Tuesday: Siemens, Schneider Electric Address Few Dozen Vulnerabilities 09/05/2023 at 19:42 By Eduard Kovacs Siemens and Schneider Electric’s Patch Tuesday advisories for May 2023 address a few dozen vulnerabilities found in their products. The post ICS Patch Tuesday: Siemens, Schneider Electric Address Few Dozen Vulnerabilities appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

ICS Patch Tuesday: Siemens, Schneider Electric Address Few Dozen Vulnerabilities Read More »

CertifID provides identity verification designed to combat seller impersonation fraud

CertifID, Industry news /

CertifID provides identity verification designed to combat seller impersonation fraud 09/05/2023 at 18:17 By Industry News CertifID released an identity verification solution to help title agencies and real estate firms combat seller impersonation fraud. The solution augments CertifID’s existing capabilities that evaluate more than 150 markers of fraud, including the verification of wiring instructions and

React to this headline:

Loading spinner

CertifID provides identity verification designed to combat seller impersonation fraud Read More »

SafePaaS’ UPAM offering enables discovery, monitoring, and control of privileged accounts

Industry news, SafePaaS /

SafePaaS’ UPAM offering enables discovery, monitoring, and control of privileged accounts 09/05/2023 at 18:17 By Industry News SafePaaS announces its Unified Privileged Access Management (UPAM) solution to protect the digital enterprise without the complexity of traditional PAM solutions that fail to meet the evolving needs of today’s dynamic, complex organizations. SafePaaS’ UPAM offering enables in-depth

React to this headline:

Loading spinner

SafePaaS’ UPAM offering enables discovery, monitoring, and control of privileged accounts Read More »

Waterfall Security Solutions and Atlantic Data Security improve protection for OT networks

Atlantic Data Security, Industry news, Waterfall Security Solutions /

Waterfall Security Solutions and Atlantic Data Security improve protection for OT networks 09/05/2023 at 18:17 By Industry News Waterfall Security Solutions and Atlantic Data Security announced a partnership to protect data centers, building automation systems and critical infrastructure facilities. With attacks on OT networks becoming more powerful and pervasive, this new partnership provides owners and

React to this headline:

Loading spinner

Waterfall Security Solutions and Atlantic Data Security improve protection for OT networks Read More »

DigiCert and Oracle join forces to help joint customers manage their digital trust initiatives

DigiCert, Industry news, Oracle /

DigiCert and Oracle join forces to help joint customers manage their digital trust initiatives 09/05/2023 at 18:17 By Industry News DigiCert announced a partnership to provide DigiCert ONE, the platform for digital trust, on Oracle Cloud Infrastructure (OCI). Customers will benefit from DigiCert ONE’s fast time to value combined with OCI’s high-performance and security-first architecture

React to this headline:

Loading spinner

DigiCert and Oracle join forces to help joint customers manage their digital trust initiatives Read More »

Scroll to Top