July 2024

Progress fixes critical RCE flaw in Telerik Report Server, upgrade ASAP! (CVE-2024-6327)

Code White, CVE, Don't miss, enterprise, Hot stuff, News, Progress, vulnerability /

Progress fixes critical RCE flaw in Telerik Report Server, upgrade ASAP! (CVE-2024-6327) 2024-07-26 at 09:46 By Zeljka Zorz Progress Software has fixed a critical vulnerability (CVE-2024-6327) in its Telerik Report Server solution and is urging users to upgrade as soon as possible. About CVE-2024-6327 (and CVE-2024-6096) Telerik Report Server is an enterprise solution for storing, […]

React to this headline:

Loading spinner

Progress fixes critical RCE flaw in Telerik Report Server, upgrade ASAP! (CVE-2024-6327) Read More »

Ongoing Cyberattack Targets Exposed Selenium Grid Services for Crypto Mining

Uncategorized /

Ongoing Cyberattack Targets Exposed Selenium Grid Services for Crypto Mining 2024-07-26 at 09:31 By Cybersecurity researchers are sounding the alarm over an ongoing campaign that’s leveraging internet-exposed Selenium Grid services for illicit cryptocurrency mining. Cloud security Wiz is tracking the activity under the name SeleniumGreed. The campaign, which is targeting older versions of Selenium (3.141.59

React to this headline:

Loading spinner

Ongoing Cyberattack Targets Exposed Selenium Grid Services for Crypto Mining Read More »

CrowdStrike Warns of New Phishing Scam Targeting German Customers

Uncategorized /

CrowdStrike Warns of New Phishing Scam Targeting German Customers 2024-07-26 at 09:31 By CrowdStrike is alerting about an unfamiliar threat actor attempting to capitalize on the Falcon Sensor update fiasco to distribute dubious installers targeting German customers as part of a highly targeted campaign. The cybersecurity company said it identified what it described as an

React to this headline:

Loading spinner

CrowdStrike Warns of New Phishing Scam Targeting German Customers Read More »

Omnissa, VMware’s old end-user biz, emerges with promise of ‘AI-infused autonomous workspace’

Uncategorized /

Omnissa, VMware’s old end-user biz, emerges with promise of ‘AI-infused autonomous workspace’ 2024-07-26 at 08:32 By Simon Sharwood We think this means easier-to-administer virtual desktops with extra shiny Omnissa, the newly independent business created by Broadcom’s spinoff of VMWare’s end-user compute arm, has proclaimed it will become a source of “AI-infused autonomous workspaces”.… This article

React to this headline:

Loading spinner

Omnissa, VMware’s old end-user biz, emerges with promise of ‘AI-infused autonomous workspace’ Read More »

Critical Flaw in Telerik Report Server Poses Remote Code Execution Risk

Uncategorized /

Critical Flaw in Telerik Report Server Poses Remote Code Execution Risk 2024-07-26 at 08:16 By Progress Software is urging users to update their Telerik Report Server instances following the discovery of a critical security flaw that could result in remote code execution. The vulnerability, tracked as CVE-2024-6327 (CVSS score: 9.9), impacts Report Server version 2024

React to this headline:

Loading spinner

Critical Flaw in Telerik Report Server Poses Remote Code Execution Risk Read More »

16% of organizations experience disruptions due to insufficient AI maturity

Action1, Artificial Intelligence, automation, cybersecurity, News, report, survey /

16% of organizations experience disruptions due to insufficient AI maturity 2024-07-26 at 07:31 By Help Net Security While sysadmins recognize AI’s potential, significant gaps in education, cautious organizational adoption, and insufficient AI maturity hinder widespread implementation, leading to mixed results and disruptions in 16% of organizations, according to Action1. Knowledge gap and training needs Sysadmins’

React to this headline:

Loading spinner

16% of organizations experience disruptions due to insufficient AI maturity Read More »

AI-generated deepfake attacks force companies to reassess cybersecurity

Artificial Intelligence, authentication, deepfakes, GetApp, News, report, survey, threat /

AI-generated deepfake attacks force companies to reassess cybersecurity 2024-07-26 at 07:31 By Help Net Security As AI-generated deepfake attacks and identity fraud become more prevalent, companies are developing response plans to address these threats, according to GetApp. In fact, 73% of US respondents report that their organization has developed a deepfake response plan. This concern

React to this headline:

Loading spinner

AI-generated deepfake attacks force companies to reassess cybersecurity Read More »

One year after SEC cyber disclosure ruling, security leaders weigh in

Uncategorized /

One year after SEC cyber disclosure ruling, security leaders weigh in 2024-07-26 at 07:16 By With a year in the rearview mirror, security professionals are reflecting on the SEC cyber disclosure ruling. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source React to this headline:

React to this headline:

Loading spinner

One year after SEC cyber disclosure ruling, security leaders weigh in Read More »

Most CISOs feel unprepared for new compliance regulations

CISO, Compliance, cybersecurity, News, Onyxia, regulation, report, survey /

Most CISOs feel unprepared for new compliance regulations 2024-07-26 at 06:31 By Help Net Security With the new stringent regulations, including the SEC’s cybersecurity disclosure rules in the USA and the Digital Operational Resilience Act (DORA) in the EU, a significant challenge is emerging for many organizations, according to Onyxia Cyber. CISO role has changed

React to this headline:

Loading spinner

Most CISOs feel unprepared for new compliance regulations Read More »

North Korean chap charged for attacks on US hospitals, NASA – and even China

Uncategorized /

North Korean chap charged for attacks on US hospitals, NASA – and even China 2024-07-26 at 06:01 By Simon Sharwood Microsoft, Mandiant, weigh in with info about methods used by Andariel gang alleged to have made many, many, heists The US Department of Justice on Thursday charged a North Korean national over a series of

React to this headline:

Loading spinner

North Korean chap charged for attacks on US hospitals, NASA – and even China Read More »

New infosec products of the week: July 26, 2024

GitGuardian, LOKKER, News, Permit.io, Secure Code Warrior, Strata Identity /

New infosec products of the week: July 26, 2024 2024-07-26 at 06:01 By Help Net Security Here’s a look at the most interesting products from the past week, featuring releases from GitGuardian, LOKKER, Permit.io, Secure Code Warrior, and Strata Identity. GitGuardian’s tool helps companies discover developer leaks on GitHub GitGuardian released a tool to help

React to this headline:

Loading spinner

New infosec products of the week: July 26, 2024 Read More »

Malware crew Stargazers Goblin used 3,000 GitHub accounts to make bank

Uncategorized /

Malware crew Stargazers Goblin used 3,000 GitHub accounts to make bank 2024-07-26 at 04:46 By Matthew Connatser May even have targeted other malware gangs, and infosec researchers Infosec researchers have discovered a network of over three thousand malicious GitHub accounts used to spread malware, targeting groups including gamers, malware researchers, and even other threat actors

React to this headline:

Loading spinner

Malware crew Stargazers Goblin used 3,000 GitHub accounts to make bank Read More »

CrowdStrike update blunder may cost world billions – and insurance ain’t covering it all

Uncategorized /

CrowdStrike update blunder may cost world billions – and insurance ain’t covering it all 2024-07-26 at 03:46 By Matthew Connatser We offer this formula instead: RND(100.0)*(10^9) The cost of CrowdStrike’s apocalyptic Falcon update that brought down millions of Windows computers last week may be in the billions of dollars, and insurance isn’t covering most of

React to this headline:

Loading spinner

CrowdStrike update blunder may cost world billions – and insurance ain’t covering it all Read More »

Sam Altman wants a US-led freedom coalition to fight authoritarian AI

Uncategorized /

Sam Altman wants a US-led freedom coalition to fight authoritarian AI 2024-07-26 at 02:17 By Brandon Vigliarolo Team America AI Police? Sam Altman has called for a US-led coalition of nations to ensure AI remains a vehicle for freedom and democracy, and not a tool for authoritarians to keep themselves in power and dominate others. …

React to this headline:

Loading spinner

Sam Altman wants a US-led freedom coalition to fight authoritarian AI Read More »

Beware of fake CrowdStrike domains pumping out Lumma infostealing malware

Uncategorized /

Beware of fake CrowdStrike domains pumping out Lumma infostealing malware 2024-07-26 at 01:46 By Jessica Lyons PSA: Only accept updates via official channels … ironically enough CrowdStrike is the latest lure being used to trick Windows users into downloading and running the notorious Lumma infostealing malware, according to the security shop’s threat intel team, which

React to this headline:

Loading spinner

Beware of fake CrowdStrike domains pumping out Lumma infostealing malware Read More »

OpenAI unveils AI search engine SearchGPT – not that you’re allowed to use it yet

Uncategorized /

OpenAI unveils AI search engine SearchGPT – not that you’re allowed to use it yet 2024-07-25 at 23:31 By Matthew Connatser Launching in Beta is so 2014. We’re in the pre-Beta limited sign-up era now After months of speculation, shy and retiring OpenAI has showed the world a glimpse of its very own web search

React to this headline:

Loading spinner

OpenAI unveils AI search engine SearchGPT – not that you’re allowed to use it yet Read More »

FYI: Data from deleted GitHub repos may not actually be deleted

Uncategorized /

FYI: Data from deleted GitHub repos may not actually be deleted 2024-07-25 at 23:01 By Thomas Claburn And the forking Microsoft-owned code warehouse doesn’t see this as much of a problem Researchers at Truffle Security have found, or arguably rediscovered, that data from deleted GitHub repositories (public or private) and from deleted copies (forks) of

React to this headline:

Loading spinner

FYI: Data from deleted GitHub repos may not actually be deleted Read More »

North Korean Charged in Ransomware Attacks on American Hospitals

cybercrime, North Korea, Tracking & Law Enforcement /

North Korean Charged in Ransomware Attacks on American Hospitals 2024-07-25 at 22:46 By Associated Press A man who allegedly carried out attacks for a North Korean military intelligence agency has been indicted in a conspiracy to hack healthcare firms, NASA, military bases and other entities. The post North Korean Charged in Ransomware Attacks on American

React to this headline:

Loading spinner

North Korean Charged in Ransomware Attacks on American Hospitals Read More »

NASA sends 4K video from a flying plane to the ISS using lasers

Uncategorized /

NASA sends 4K video from a flying plane to the ISS using lasers 2024-07-25 at 22:16 By Brandon Vigliarolo 900 Mbps from Earth to orbit, and I still can’t get reliable Wi-Fi in my backyard Jealous of the fact that the International Space Station has better internet than you do? Well, here’s one more benchmark

React to this headline:

Loading spinner

NASA sends 4K video from a flying plane to the ISS using lasers Read More »

Scroll to Top