2024-07-11 - Security Ticks

Trump threatens to send Meta’s Mark ‘Zuckerbucks’ to prison if reelected president

Trump threatens to send Meta’s Mark ‘Zuckerbucks’ to prison if reelected president 2024-07-11 at 22:46 By Matthew Connatser If you were wondering how the US White House race is going in 2024, it’s going like this… Florida Man Donald Trump has said that if elected President of the United States again, he will jail so-called […]

React to this headline:

Trump threatens to send Meta’s Mark ‘Zuckerbucks’ to prison if reelected president Read More »

OpenSSH bug leaves RHEL 9 and the RHELatives vulnerable

Uncategorized / SecurityTicks

OpenSSH bug leaves RHEL 9 and the RHELatives vulnerable 2024-07-11 at 22:31 By Liam Proven Newly discovered flaw affects OpenSSH 8.7 and 8.8 daemon The founder of Openwall has discovered a new signal handler race condition in the core sshd daemon used in RHEL 9.x and its various offshoots.… This article is an excerpt from

React to this headline:

OpenSSH bug leaves RHEL 9 and the RHELatives vulnerable Read More »

With users mostly happy to keep older kit, Macs just ain’t selling like they used to

Uncategorized / SecurityTicks

With users mostly happy to keep older kit, Macs just ain’t selling like they used to 2024-07-11 at 21:16 By Brandon Vigliarolo And the AI PC revolution probably won’t help, we’re told Owners of Apple Mac devices simply aren’t buying new hardware as quickly as they used to. … This article is an excerpt from The

React to this headline:

With users mostly happy to keep older kit, Macs just ain’t selling like they used to Read More »

FCC: US telcos a long way off, several billions short of removing Chinese kit

Uncategorized / SecurityTicks

FCC: US telcos a long way off, several billions short of removing Chinese kit 2024-07-11 at 20:16 By Dan Robinson Just 12% of providers have completed rip and replace of ZTE, Huawei The US Federal Communications Commission (FCC) has reiterated to Congress that more cash is needed if smaller broadband providers are to be compensated for

React to this headline:

FCC: US telcos a long way off, several billions short of removing Chinese kit Read More »

Former Autonomy CFO banned from chartered accounting group until 2038

Uncategorized / SecurityTicks

Former Autonomy CFO banned from chartered accounting group until 2038 2024-07-11 at 19:16 By Matthew Connatser Sushovan Hussain’s failure in 2020 to appeal his 2018 fraud conviction in the US means he won’t be a member of ICAEW for 20 years The expulsion of Sushovan Hussain, Autonomy’s former CFO, from a chartered accountant organization is

React to this headline:

Former Autonomy CFO banned from chartered accounting group until 2038 Read More »

Unleashing the potential of investigative techniques

Uncategorized / SecurityTicks

Unleashing the potential of investigative techniques 2024-07-11 at 19:16 By In the realm of executive protection, the necessity to expect and defuse potential threats is paramount. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source React to this headline:

React to this headline:

Unleashing the potential of investigative techniques Read More »

Tracebit Raises $5 Million for Threat Deception Solution

Accel, Data Protection, Funding/M&A, Honeypot, seed funding, Tracebit / SecurityTicks

Tracebit Raises $5 Million for Threat Deception Solution 2024-07-11 at 19:16 By Ionut Arghire London startup Tracebit has raised $5 million in seed funding for its cloud-native threat detection and deception solution. The post Tracebit Raises $5 Million for Threat Deception Solution appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Tracebit Raises $5 Million for Threat Deception Solution Read More »

Palo Alto Networks Patches Critical Flaw in Expedition Migration Tool

Uncategorized / SecurityTicks

Palo Alto Networks Patches Critical Flaw in Expedition Migration Tool 2024-07-11 at 18:46 By Palo Alto Networks has released security updates to address five security flaws impacting its products, including a critical bug that could lead to an authentication bypass. Cataloged as CVE-2024-5910 (CVSS score: 9.3), the vulnerability has been described as a case of

React to this headline:

Palo Alto Networks Patches Critical Flaw in Expedition Migration Tool Read More »

60 New Malicious Packages Uncovered in NuGet Supply Chain Attack

Uncategorized / SecurityTicks

60 New Malicious Packages Uncovered in NuGet Supply Chain Attack 2024-07-11 at 18:46 By Threat actors have been observed publishing a new wave of malicious packages to the NuGet package manager as part of an ongoing campaign that began in August 2023, while also adding a new layer of stealth to evade detection. The fresh

React to this headline:

60 New Malicious Packages Uncovered in NuGet Supply Chain Attack Read More »

Palantir, Oracle cosy up to offer Karp firm’s tech across Big Red’s cloud

Uncategorized / SecurityTicks

Palantir, Oracle cosy up to offer Karp firm’s tech across Big Red’s cloud 2024-07-11 at 18:16 By Lindsay Clark Foundry and AI plaform available in OCI Palantir and Oracle are hooking up to promote the US spy-tech company’s technology on the Oracle Cloud Infrastructure platform.… This article is an excerpt from The Register View Original

React to this headline:

Palantir, Oracle cosy up to offer Karp firm’s tech across Big Red’s cloud Read More »

How to Cancel Surfshark, Stop Auto-Renewal & Get a Refund

Uncategorized / SecurityTicks

How to Cancel Surfshark, Stop Auto-Renewal & Get a Refund 2024-07-11 at 18:11 After using Surfshark for 20 days, I asked for a full refund. They really made the process hassle-free, sticking to their money-back promise. It didn’t even matter that I used a deal to get the cheapest Surfshark plan. If Surfshark isn’t quite

React to this headline:

How to Cancel Surfshark, Stop Auto-Renewal & Get a Refund Read More »

‘CrystalRay’ Expands Arsenal, Hits 1,500 Targets with SSH-Snake and Open Source Tools

CrystalRay, CVE-2019-18394, CVE-2021-3129, CVE-2022-44877, Fraud & Identity Theft, Malware & Threats, SSH-Snake / SecurityTicks

‘CrystalRay’ Expands Arsenal, Hits 1,500 Targets with SSH-Snake and Open Source Tools 2024-07-11 at 18:01 By Ionut Arghire A threat actor tracked as CrystalRay has hit 1,500 victims since February, stealing credentials and deploying backdoors. The post ‘CrystalRay’ Expands Arsenal, Hits 1,500 Targets with SSH-Snake and Open Source Tools appeared first on SecurityWeek. This article

React to this headline:

‘CrystalRay’ Expands Arsenal, Hits 1,500 Targets with SSH-Snake and Open Source Tools Read More »

GitLab Ships Update for Critical Pipeline Execution Vulnerability

CVE-2024-5655, CVE-2024-6385, GitLab, Supply Chain Security, Vulnerabilities / SecurityTicks

GitLab Ships Update for Critical Pipeline Execution Vulnerability 2024-07-11 at 18:01 By Ionut Arghire GitLab issues an advisory for a critical-severity vulnerability that allows an attacker to trigger a pipeline as another user. The post GitLab Ships Update for Critical Pipeline Execution Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

GitLab Ships Update for Critical Pipeline Execution Vulnerability Read More »

Google: We’re still working to defeat Microsoft’s ‘anticompetitive’ cloud policy

Uncategorized / SecurityTicks

Google: We’re still working to defeat Microsoft’s ‘anticompetitive’ cloud policy 2024-07-11 at 17:31 By Paul Kunert Yesterday’s settlement between MS and Euro cloud providers shouldn’t ‘fool’ you, says Alphabet arm’s cloud boss Google says Microsoft’s confidential settlement with a group of European cloud providers is merely about using its financial muscle to make complaints about

React to this headline:

Google: We’re still working to defeat Microsoft’s ‘anticompetitive’ cloud policy Read More »

Advance Auto Parts: 2.3M people’s data accessed when crims broke into our Snowflake account

Uncategorized / SecurityTicks

Advance Auto Parts: 2.3M people’s data accessed when crims broke into our Snowflake account 2024-07-11 at 16:31 By Connor Jones Letters from CISO Ethan Steiger suggest the data related to job applications Advance Auto Parts’ CISO just revealed for the first time the number of individuals affected when criminals broke into its Snowflake instance –

React to this headline:

Advance Auto Parts: 2.3M people’s data accessed when crims broke into our Snowflake account Read More »

Kanguru’s hardware-based internal SEDs secure data on laptops, tablets, and computers

Industry news, Kanguru / SecurityTicks

Kanguru’s hardware-based internal SEDs secure data on laptops, tablets, and computers 2024-07-11 at 16:01 By Industry News Kanguru has unveiled its latest security product line aimed at helping organizations safeguard sensitive data on laptops, tablets, and computers. The new hardware-based internal Self-Encrypting Drives (SEDs) are high-performance solid state drives designed to provide optimal security. These

React to this headline:

Kanguru’s hardware-based internal SEDs secure data on laptops, tablets, and computers Read More »

European Commission accepts Apple’s ‘tap and go’ promises

Uncategorized / SecurityTicks

European Commission accepts Apple’s ‘tap and go’ promises 2024-07-11 at 15:46 By Richard Speed Makes third-party wallets getting iOS NFC access a ‘legally binding’ thing Apple has avoided a potential hefty fine and an antitrust case in Europe after making concessions that include opening up access to iPhone hardware needed for “tap and go” applications.…

React to this headline:

European Commission accepts Apple’s ‘tap and go’ promises Read More »

Using Authy? Beware of impending phishing attempts

2FA, API security, authentication, CCC, cloud security, Data leak, Don't miss, Hot stuff, MFA, News, phishing, Twilio / SecurityTicks

Using Authy? Beware of impending phishing attempts 2024-07-11 at 15:46 By Zeljka Zorz Do you use Authy for your multi-factor authentication needs? If you do, you should keep an eye out for phishing attempts, as well as implement defenses against SIM swapping attacks. What happened? On July 1, Twilio – the company that develops the

React to this headline:

Using Authy? Beware of impending phishing attempts Read More »

Chinese APT41 Upgrades Malware Arsenal with DodgeBox and MoonWalk

Uncategorized / SecurityTicks

Chinese APT41 Upgrades Malware Arsenal with DodgeBox and MoonWalk 2024-07-11 at 15:46 By The China-linked advanced persistent threat (APT) group codenamed APT41 is suspected to be using an “advanced and upgraded version” of a known malware called StealthVector to deliver a previously undocumented backdoor dubbed MoonWalk. The new variant of StealthVector – which is also

React to this headline:

Chinese APT41 Upgrades Malware Arsenal with DodgeBox and MoonWalk Read More »

ScienceLogic enhances AIOps platform to improve security and third-party industry interoperability

Industry news, ScienceLogic / SecurityTicks

ScienceLogic enhances AIOps platform to improve security and third-party industry interoperability 2024-07-11 at 15:31 By Industry News ScienceLogic announced a series of key updates to its AIOps platform to deliver enhanced reliability and security, enterprise enablement, third-party integration, improved user experience, and greater support for data center needs. The updates include a new integration with

React to this headline:

ScienceLogic enhances AIOps platform to improve security and third-party industry interoperability Read More »

July 11, 2024