January, 2024 - Security Ticks

URGENT: Upgrade GitLab – Critical Workspace Creation Flaw Allows File Overwrite

URGENT: Upgrade GitLab – Critical Workspace Creation Flaw Allows File Overwrite 2024-01-30 at 18:46 By GitLab once again released fixes to address a critical security flaw in its Community Edition (CE) and Enterprise Edition (EE) that could be exploited to write arbitrary files while creating a workspace. Tracked as CVE-2024-0402, the vulnerability has a CVSS score of […]

React to this headline:

URGENT: Upgrade GitLab – Critical Workspace Creation Flaw Allows File Overwrite Read More »

ESA salutes Galileo satellite system meeting aviation standards

Uncategorized / SecurityTicks

ESA salutes Galileo satellite system meeting aviation standards 2024-01-30 at 18:16 By Richard Speed It’s all in the software The European Space Agency (ESA) has celebrated the Galileo satellite navigation system meeting civil aviation standards governing flight phases from take-off to landing and explained how the feat was done.… This article is an excerpt from

React to this headline:

ESA salutes Galileo satellite system meeting aviation standards Read More »

Reg story prompts fresh security bulletin, review of Juniper Networks’ CVE process

Uncategorized / SecurityTicks

Reg story prompts fresh security bulletin, review of Juniper Networks’ CVE process 2024-01-30 at 17:32 By Connor Jones Vendor gets tangled in its own web of undisclosed vulnerabilities Juniper Networks has disclosed separate vulnerabilities it was previously accused of concealing, and apologized to customers for the error in communication.… This article is an excerpt from

React to this headline:

Reg story prompts fresh security bulletin, review of Juniper Networks’ CVE process Read More »

There was a 39% surge in data exfiltration cyberattacks in 2023

Uncategorized / SecurityTicks

There was a 39% surge in data exfiltration cyberattacks in 2023 2024-01-30 at 17:32 By According to a report, the number of organizations claiming to have been a victim of ransomware in the past 12 months more than doubled. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source React

React to this headline:

There was a 39% surge in data exfiltration cyberattacks in 2023 Read More »

Active Exploitation of Atlassian Confluence RCE Vulnerability (CVE-2023-22527)

exploit, vulnerability / SecurityTicks

Active Exploitation of Atlassian Confluence RCE Vulnerability (CVE-2023-22527) 2024-01-30 at 17:15 By neetha871ad236bd Cyble’s Global Sensor Intelligence (CGSI) network picks up scanning attempts aiming to exploit a recent Vulnerability in Atlassian Confluence. The post Active Exploitation of Atlassian Confluence RCE Vulnerability (CVE-2023-22527) appeared first on Cyble. The post Active Exploitation of Atlassian Confluence RCE Vulnerability

React to this headline:

Active Exploitation of Atlassian Confluence RCE Vulnerability (CVE-2023-22527) Read More »

SentinelOne unveils threat hunting capabilities in its WatchTower and WatchTower Pro

Industry news, SentinelOne / SecurityTicks

SentinelOne unveils threat hunting capabilities in its WatchTower and WatchTower Pro 2024-01-30 at 17:08 By Industry News Organizations today face a relentless pace of sophisticated cyber attacks that they must be able to swiftly detect and neutralize to keep their assets and infrastructure safe. But many lack the time and resources to pull this off.

React to this headline:

SentinelOne unveils threat hunting capabilities in its WatchTower and WatchTower Pro Read More »

Research shows cybercriminals’ motivation shifts to data exfiltration

Uncategorized / SecurityTicks

Research shows cybercriminals’ motivation shifts to data exfiltration 2024-01-30 at 17:08 By A new report shows ransomware attacks are increasing again and reveals a change in strategy among cybercriminals. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source React to this headline:

React to this headline:

Research shows cybercriminals’ motivation shifts to data exfiltration Read More »

AI is changing search, for better or for worse

Uncategorized / SecurityTicks

AI is changing search, for better or for worse 2024-01-30 at 16:47 By Thomas Claburn Bing hasn’t much benefited from its AI infusion but Google’s rivals sense an opening Feature Ask Google’s Bard chatbot about the future of search and you’ll get a summary of trends that suggest there’s more to search than finding keywords

React to this headline:

AI is changing search, for better or for worse Read More »

Data of 750 Million Indian Mobile Subscribers Sold on Hacker Forums

cybercrime / SecurityTicks

Data of 750 Million Indian Mobile Subscribers Sold on Hacker Forums 2024-01-30 at 16:46 By Ionut Arghire A massive database containing the information of 85% of the Indian population has emerged on the dark web. The post Data of 750 Million Indian Mobile Subscribers Sold on Hacker Forums appeared first on SecurityWeek. This article is

React to this headline:

Data of 750 Million Indian Mobile Subscribers Sold on Hacker Forums Read More »

Juniper Networks Patches Vulnerabilities in Switches, Firewalls

Juniper, Vulnerabilities / SecurityTicks

Juniper Networks Patches Vulnerabilities in Switches, Firewalls 2024-01-30 at 16:46 By Ionut Arghire A high-severity flaw in the J-Web interface of Juniper’s Junos OS could lead to arbitrary command execution, remotely. The post Juniper Networks Patches Vulnerabilities in Switches, Firewalls appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

Juniper Networks Patches Vulnerabilities in Switches, Firewalls Read More »

US Lawmakers Introduce Farm and Food Cybersecurity Act

Government, Laws / SecurityTicks

US Lawmakers Introduce Farm and Food Cybersecurity Act 2024-01-30 at 16:46 By Ionut Arghire New bipartisan, bicameral legislation aims to improve cybersecurity protections within the food and agriculture sector. The post US Lawmakers Introduce Farm and Food Cybersecurity Act appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

React to this headline:

US Lawmakers Introduce Farm and Food Cybersecurity Act Read More »

US Disrupted Chinese Hacking Operation Aimed at Critical Infrastructure: Report

China, Government, Volt Typhoon / SecurityTicks

US Disrupted Chinese Hacking Operation Aimed at Critical Infrastructure: Report 2024-01-30 at 16:46 By Eduard Kovacs US government reportedly disabled parts of a botnet-powered cyber campaign conducted by the Chinese threat actor Volt Typhoon. The post US Disrupted Chinese Hacking Operation Aimed at Critical Infrastructure: Report appeared first on SecurityWeek. This article is an excerpt

React to this headline:

US Disrupted Chinese Hacking Operation Aimed at Critical Infrastructure: Report Read More »

Siren launches AI-Powered search with mobile access for front line officers

Industry news, Siren / SecurityTicks

Siren launches AI-Powered search with mobile access for front line officers 2024-01-30 at 16:31 By Industry News Siren has launched a new AI-Powered search with mobile access as part of its latest release and its Siren for Law Enforcement product bundle. Siren provides a complete suite of investigation tools for contemporary challenges such as police

React to this headline:

Siren launches AI-Powered search with mobile access for front line officers Read More »

Raspberry Pi on IPO plans: ‘We want to be ready when the markets are ready’

Uncategorized / SecurityTicks

Raspberry Pi on IPO plans: ‘We want to be ready when the markets are ready’ 2024-01-30 at 16:16 By Richard Speed Bankers appointed, but CEO insists nothing will change while he’s in charge The Raspberry Pi company is again preparing the ground for an initial public offering (IPO), appointing bankers Peel Hunt and Jefferies ahead

React to this headline:

Raspberry Pi on IPO plans: ‘We want to be ready when the markets are ready’ Read More »

MC²/The Chertoff Group Acquisition Sets Trustwave up for Accelerated Growth

Reports / SecurityTicks

MC²/The Chertoff Group Acquisition Sets Trustwave up for Accelerated Growth 2024-01-30 at 16:16 By IDC Market Note: Trustwave Reemerges with a Promising Future and Partner This article is an excerpt from Trustwave Blog View Original Source React to this headline:

React to this headline:

MC²/The Chertoff Group Acquisition Sets Trustwave up for Accelerated Growth Read More »

China-Linked Hackers Target Myanmar’s Top Ministries with Backdoor Blitz

Uncategorized / SecurityTicks

China-Linked Hackers Target Myanmar’s Top Ministries with Backdoor Blitz 2024-01-30 at 16:16 By The China-based threat actor known as Mustang Panda is suspected to have targeted Myanmar’s Ministry of Defence and Foreign Affairs as part of twin campaigns designed to deploy backdoors and remote access trojans. The findings come from CSIRT-CTI, which said the activities took place

React to this headline:

China-Linked Hackers Target Myanmar’s Top Ministries with Backdoor Blitz Read More »

Protected: Active Exploitation of Atlassian Confluence RCE Vulnerability (CVE-2023-22527)

Annoucement, exploit, vulnerability / SecurityTicks

Protected: Active Exploitation of Atlassian Confluence RCE Vulnerability (CVE-2023-22527) 2024-01-30 at 16:02 By neetha871ad236bd There is no excerpt because this is a protected post. The post Protected: Active Exploitation of Atlassian Confluence RCE Vulnerability (CVE-2023-22527) appeared first on Cyble. The post Protected: Active Exploitation of Atlassian Confluence RCE Vulnerability (CVE-2023-22527) appeared first on Cyble. This

React to this headline:

Protected: Active Exploitation of Atlassian Confluence RCE Vulnerability (CVE-2023-22527) Read More »

NordVPN Link Checker protects users from malicious websites

Industry news, NordVPN / SecurityTicks

NordVPN Link Checker protects users from malicious websites 2024-01-30 at 16:02 By Industry News NordVPN launches its new experimental product from the NordLabs platform. Link Checker is a manual URL-checking tool that enables users to examine a website’s safety before visiting by scanning it for different types of malware and getting a notification about whether

React to this headline:

NordVPN Link Checker protects users from malicious websites Read More »

Windows 3.11 trundles on as job site pleads for ‘driver updates’ on German trains

Uncategorized / SecurityTicks

Windows 3.11 trundles on as job site pleads for ‘driver updates’ on German trains 2024-01-30 at 15:25 By Richard Speed Remember making Windows and DOS talk to a network? You could go back to the future with this assignment If you were thinking about forcing an AI to write a job ad for an administrator

React to this headline:

Windows 3.11 trundles on as job site pleads for ‘driver updates’ on German trains Read More »

UK lawmakers say live facial recognition lacks a legal basis

Uncategorized / SecurityTicks

UK lawmakers say live facial recognition lacks a legal basis 2024-01-30 at 14:51 By Lindsay Clark Lords warn Home Secretary there is nothing to regulate wider trawl of large populations A UK committee in its upper house has written to Home Secretary James Cleverly to warn of the lack of legal basis for the use

React to this headline:

UK lawmakers say live facial recognition lacks a legal basis Read More »

January 2024