January 2024

‘I’m sorry for everything…’ Facebook’s Zuck apologizes to families at Senate hearing

Uncategorized /

‘I’m sorry for everything…’ Facebook’s Zuck apologizes to families at Senate hearing 2024-01-31 at 23:46 By Thomas Claburn Meta boss told in social media safety probe: ‘Your product is killing people’ Executives from the top social media companies faced contentious, sometimes contemptuous, questioning from the US Senate Judiciary Committee on Wednesday in a hearing titled: […]

React to this headline:

Loading spinner

‘I’m sorry for everything…’ Facebook’s Zuck apologizes to families at Senate hearing Read More »

US Gov Disrupts SOHO Router Botnet Used by Chinese APT Volt Typhoon

Cisco, KV Botnet, Nation-State, Netgear, Network Security, Volt Typhoon /

US Gov Disrupts SOHO Router Botnet Used by Chinese APT Volt Typhoon 2024-01-31 at 23:01 By Ryan Naraine The US government neutralizes a botnet full of end-of-life Cisco and Netgear routers being by a notorious Chinese APT group. The post US Gov Disrupts SOHO Router Botnet Used by Chinese APT Volt Typhoon appeared first on

React to this headline:

Loading spinner

US Gov Disrupts SOHO Router Botnet Used by Chinese APT Volt Typhoon Read More »

RunC Flaws Enable Container Escapes, Granting Attackers Host Access

Uncategorized /

RunC Flaws Enable Container Escapes, Granting Attackers Host Access 2024-01-31 at 22:46 By Multiple security vulnerabilities have been disclosed in the runC command line tool that could be exploited by threat actors to escape the bounds of the container and stage follow-on attacks. The vulnerabilities, tracked as CVE-2024-21626, CVE-2024-23651, CVE-2024-23652, and CVE-2024-23653, have been collectively

React to this headline:

Loading spinner

RunC Flaws Enable Container Escapes, Granting Attackers Host Access Read More »

79% of organizations faced a ransomware attack in H2 2023

Uncategorized /

79% of organizations faced a ransomware attack in H2 2023 2024-01-31 at 22:31 By According to a recent report, 79% of respondents said their company had been the ‘victim of a ransomware attack’ between June and December 2023. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source React to

React to this headline:

Loading spinner

79% of organizations faced a ransomware attack in H2 2023 Read More »

DeepMind’s robot chef cooks up ‘novel’ materials with a side of controversy

Uncategorized /

DeepMind’s robot chef cooks up ‘novel’ materials with a side of controversy 2024-01-31 at 22:03 By Katyanna Quach Chemists dispute research claiming millions of recipes for inorganic crystalline compounds Google DeepMind and UC Berkeley’s research into a robot cooking up new materials predicted by AI algorithms is being called into question by a group of

React to this headline:

Loading spinner

DeepMind’s robot chef cooks up ‘novel’ materials with a side of controversy Read More »

FBI confirms it issued remote kill command to blow out Volt Typhoon’s botnet

Uncategorized /

FBI confirms it issued remote kill command to blow out Volt Typhoon’s botnet 2024-01-31 at 21:32 By Jessica Lyons Hardcastle Remotely disinfects Cisco and Netgear routers to block Chinese critters China’s Volt Typhoon attackers used “hundreds” of outdated Cisco and NetGear routers infected with malware in an attempt to break into US critical infrastructure facilities,

React to this headline:

Loading spinner

FBI confirms it issued remote kill command to blow out Volt Typhoon’s botnet Read More »

Ransomware payment rates drop to new low – only 29% of victims are forking over cash

Uncategorized /

Ransomware payment rates drop to new low – only 29% of victims are forking over cash 2024-01-31 at 21:16 By Brandon Vigliarolo It’s almost like years of false assurances have made people realize payments are pointless Trusting a ransomware crew to honor a deal isn’t the greatest idea, and the world seems to be waking

React to this headline:

Loading spinner

Ransomware payment rates drop to new low – only 29% of victims are forking over cash Read More »

Japanese space lasers plan to show aims to clean up orbital junk

Uncategorized /

Japanese space lasers plan to show aims to clean up orbital junk 2024-01-31 at 21:02 By Dan Robinson Zap it and trap it like a cosmic Marie Kondo, but will everyone approve? A Japanese company wants to remove debris from Earth orbit by using a satellite-mounted laser to decelerate an object such as a defunct

React to this headline:

Loading spinner

Japanese space lasers plan to show aims to clean up orbital junk Read More »

Nearly 4-year-old Cisco vuln linked to recent Akira ransomware attacks

Uncategorized /

Nearly 4-year-old Cisco vuln linked to recent Akira ransomware attacks 2024-01-31 at 19:47 By Connor Jones Evidence mounts of an exploit gatekept within Russia’s borders Security researchers believe the Akira ransomware group could be exploiting a nearly four-year-old Cisco vulnerability and using it as an entry point into organizations’ systems.… This article is an excerpt

React to this headline:

Loading spinner

Nearly 4-year-old Cisco vuln linked to recent Akira ransomware attacks Read More »

Podcast: Palo Alto Networks Talks IT/OT Convergence

ICS, ICS/OT, Industrial, Palo Alto Networks, SCADA /

Podcast: Palo Alto Networks Talks IT/OT Convergence 2024-01-31 at 19:47 By SecurityWeek News SecurityWeek interviews Del Rodillas, Senior Director of Product Management at Palo Alto Networks, about the integration of IT and OT in the ICS threat landscape. The post Podcast: Palo Alto Networks Talks IT/OT Convergence appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

Podcast: Palo Alto Networks Talks IT/OT Convergence Read More »

GNU C Library Vulnerability Leads to Full Root Access

CVE-2023-6246, GNU C, Linux, Qualys, Security Architecture, Vulnerabilities /

GNU C Library Vulnerability Leads to Full Root Access 2024-01-31 at 19:47 By Ionut Arghire Researchers at Qualys call attention to a vulnerability in Linux’s GNU C Library (glibc) that allows full root access to a system. The post GNU C Library Vulnerability Leads to Full Root Access appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

GNU C Library Vulnerability Leads to Full Root Access Read More »

After Delays, Ivanti Patches Zero-Days and Confirms New Exploit

CISA KEV, CVE-2023-46805, CVE-2024-21887, CVE-2024-21893, Featured, Ivanti, Malware & Threats, Vulnerabilities /

After Delays, Ivanti Patches Zero-Days and Confirms New Exploit 2024-01-31 at 19:47 By Ryan Naraine Ivanti documents a brand-new zero-day and belatedly ships patches; Mandiant is reporting “broad exploitation activity.” The post After Delays, Ivanti Patches Zero-Days and Confirms New Exploit appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

React to this headline:

Loading spinner

After Delays, Ivanti Patches Zero-Days and Confirms New Exploit Read More »

We know nations are going after critical systems, but what happens when crims join in?

Uncategorized /

We know nations are going after critical systems, but what happens when crims join in? 2024-01-31 at 19:32 By Jessica Lyons Hardcastle This isn’t going to end well Volt Typhoon, the Chinese government-backed cyberspies whose infrastructure was at least partially disrupted by Uncle Sam, has been honing in on other US energy, satellite and telecommunications

React to this headline:

Loading spinner

We know nations are going after critical systems, but what happens when crims join in? Read More »

Microsoft seeks Rust developers to rewrite core C# code

Uncategorized /

Microsoft seeks Rust developers to rewrite core C# code 2024-01-31 at 18:46 By Richard Speed Embrace, extend, and … port? Microsoft’s adoption of Rust continues apace if a posting on the company’s careers website is anything to go by.… This article is an excerpt from The Register View Original Source React to this headline:

React to this headline:

Loading spinner

Microsoft seeks Rust developers to rewrite core C# code Read More »

Experian Fraud Protect enables automotive dealers to detect and prevent fraud

Industry news /

Experian Fraud Protect enables automotive dealers to detect and prevent fraud 2024-01-31 at 18:31 By Industry News With more of the vehicle buying journey shifting online and vehicle prices remaining at elevated levels, fraudsters are targeting the automotive industry at an increasing rate. To address the rising threat, Experian launched Fraud Protect, a web-based application

React to this headline:

Loading spinner

Experian Fraud Protect enables automotive dealers to detect and prevent fraud Read More »

A zero-day vulnerability (and PoC) to blind defenses relying on Windows event logs

0-day, ACROS Security, Don't miss, Hot stuff, intrusion detection, logging, News, PoC, Windows, Windows Server /

A zero-day vulnerability (and PoC) to blind defenses relying on Windows event logs 2024-01-31 at 18:31 By Zeljka Zorz A zero-day vulnerability that, when triggered, could crash the Windows Event Log service on all supported (and some legacy) versions of Windows could spell trouble for enterprise defenders. Discovered by a security researcher named Florian and

React to this headline:

Loading spinner

A zero-day vulnerability (and PoC) to blind defenses relying on Windows event logs Read More »

Vade uses generative AI to enhance spear-phishing detection

Industry news, Vade Secure /

Vade uses generative AI to enhance spear-phishing detection 2024-01-31 at 18:01 By Industry News Vade announced that it has pioneered a new method that improves the confidence of its spear-phishing detection engine. The enhancement, designed to combat advanced threats including those produced by generative AI, leverages threat samples created by artificial technology and human sources.

React to this headline:

Loading spinner

Vade uses generative AI to enhance spear-phishing detection Read More »

Ivanti releases patches for VPN zero-days, discloses two more high-severity vulns

Uncategorized /

Ivanti releases patches for VPN zero-days, discloses two more high-severity vulns 2024-01-31 at 17:47 By Connor Jones Many versions still without fixes while sophisticated attackers bypass mitigations Ivanti has finally released the first round of patches for vulnerability-stricken Connect Secure and Policy Secure gateways, but in doing so has also found two additional zero-days, one

React to this headline:

Loading spinner

Ivanti releases patches for VPN zero-days, discloses two more high-severity vulns Read More »

Security leaders share thoughts on Schneider Electric ransomware attack

Uncategorized /

Security leaders share thoughts on Schneider Electric ransomware attack 2024-01-31 at 17:47 By Security leaders share their thoughts on the recent Schneider Electric ransomware attack and how other organizations can protect themselves. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source React to this headline:

React to this headline:

Loading spinner

Security leaders share thoughts on Schneider Electric ransomware attack Read More »

Scroll to Top