July, 2024 - Security Ticks

Oracle’s Java pricing brews bitter taste, subscribers spill over to OpenJDK

Oracle’s Java pricing brews bitter taste, subscribers spill over to OpenJDK 2024-07-25 at 21:16 By Lindsay Clark Following licensing changes, 86% of users head for the door. Coincidence? Only 14 percent of Oracle Java subscribers plan to stay on Big Red’s runtime environment, according to a study following the introduction of an employee-based subscription model.… […]

React to this headline:

Oracle’s Java pricing brews bitter taste, subscribers spill over to OpenJDK Read More »

Uncle Sam accuses telco IT pro of decade-long spying campaign for China

Uncategorized / SecurityTicks

Uncle Sam accuses telco IT pro of decade-long spying campaign for China 2024-07-25 at 20:31 By Connor Jones Beijing has a long history of recruiting US residents to carry out various espionage activities The US is looking to prosecute a Chinese immigrant over claims he has been drip-feeding information of interest to Beijing since at

React to this headline:

Uncle Sam accuses telco IT pro of decade-long spying campaign for China Read More »

Microsoft adds generative search to its Bing engine

Uncategorized / SecurityTicks

Microsoft adds generative search to its Bing engine 2024-07-25 at 19:49 By Richard Speed Looks a lot like Google’s AI Overviews, hopefully without some of the early unfortunate summaries Microsoft is adding generative search to Bing despite the search engine’s market share showing no increase after prior AI tech additions.… This article is an excerpt

React to this headline:

Microsoft adds generative search to its Bing engine Read More »

Chainguard Raises $140 Million, Expands Tech to Secure AI Workloads

Chainguard, container, Funding/M&A, open source, Sequioa, Series C, Supply Chain Security / SecurityTicks

Chainguard Raises $140 Million, Expands Tech to Secure AI Workloads 2024-07-25 at 19:49 By Ryan Naraine Software supply chain security startup Chainguard raises a $140 million Series C round that values the company at $1.2 billion. The post Chainguard Raises $140 Million, Expands Tech to Secure AI Workloads appeared first on SecurityWeek. This article is

React to this headline:

Chainguard Raises $140 Million, Expands Tech to Secure AI Workloads Read More »

How organizations can save CISOs amidst increasing federal regulations

Uncategorized / SecurityTicks

How organizations can save CISOs amidst increasing federal regulations 2024-07-25 at 19:16 By How can an organization save its CISO? It starts with four key strategies. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source React to this headline:

React to this headline:

How organizations can save CISOs amidst increasing federal regulations Read More »

Apple Maps escapes orchard into web browser wilds

Uncategorized / SecurityTicks

Apple Maps escapes orchard into web browser wilds 2024-07-25 at 18:46 By Richard Speed Chrome and Edge on Windows can now join the fun Apple has introduced its mapping technology to devices outside its ecosystem with a web version that works in Chrome and Edge on Windows PCs.… This article is an excerpt from The

React to this headline:

Apple Maps escapes orchard into web browser wilds Read More »

North Korean Hackers Shift from Cyber Espionage to Ransomware Attacks

Uncategorized / SecurityTicks

North Korean Hackers Shift from Cyber Espionage to Ransomware Attacks 2024-07-25 at 18:01 By A North Korea-linked threat actor known for its cyber espionage operations has gradually expanded into financially-motivated attacks that involve the deployment of ransomware, setting it apart from other nation-state hacking groups linked to the country. Google-owned Mandiant is tracking the activity

React to this headline:

North Korean Hackers Shift from Cyber Espionage to Ransomware Attacks Read More »

STMicroelectronics sees sharp decline in Q2 earnings amid weak auto sector demand

Uncategorized / SecurityTicks

STMicroelectronics sees sharp decline in Q2 earnings amid weak auto sector demand 2024-07-25 at 17:31 By Dan Robinson NXP Semiconductors and Texas Instruments also hit by slowdown Euro chipmaker STMicroelectronics saw revenue and net income slump in Q2 of this year, blaming low demand in the automotive sector while orders elsewhere failed to meet expectations,

React to this headline:

STMicroelectronics sees sharp decline in Q2 earnings amid weak auto sector demand Read More »

You should probably fix this 5-year-old critical Docker vuln fairly sharpish

Uncategorized / SecurityTicks

You should probably fix this 5-year-old critical Docker vuln fairly sharpish 2024-07-25 at 17:01 By Connor Jones For some unknown reason, initial patch was omitted from later versions Docker is warning users to rev their Docker Engine into patch mode after it realized a near-maximum severity vulnerability had been sticking around for five years.… This

React to this headline:

You should probably fix this 5-year-old critical Docker vuln fairly sharpish Read More »

Adobe exec likened hidden cloud subscription fees to ‘heroin’, says FTC

Uncategorized / SecurityTicks

Adobe exec likened hidden cloud subscription fees to ‘heroin’, says FTC 2024-07-25 at 16:16 By Thomas Claburn Read the unredacted complaint against Photoshop giant and its software plans Adobe’s controversial billing practices and punitive fees for those terminating their subscriptions early follow from the software titan’s addiction to revenue, the FTC has said.… This article

React to this headline:

Adobe exec likened hidden cloud subscription fees to ‘heroin’, says FTC Read More »

BIND Updates Resolve High-Severity DoS Vulnerabilities

BIND, Vulnerabilities, vulnerability / SecurityTicks

BIND Updates Resolve High-Severity DoS Vulnerabilities 2024-07-25 at 16:16 By Ionut Arghire The latest BIND security updates address remotely exploitable vulnerabilities leading to denial-of-service. The post BIND Updates Resolve High-Severity DoS Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to this headline:

React to this headline:

BIND Updates Resolve High-Severity DoS Vulnerabilities Read More »

Trustwave Named as a Representative Vendor in the 2024 Gartner®️ Market Guide for Digital Forensics and Incident Response Retainer Services

Spotlights / SecurityTicks

Trustwave Named as a Representative Vendor in the 2024 Gartner®️ Market Guide for Digital Forensics and Incident Response Retainer Services 2024-07-25 at 16:01 By For the second week in a row, Trustwave proudly announces recognition from the industry analyst firm Gartner. This article is an excerpt from Trustwave Blog View Original Source React to this

React to this headline:

Trustwave Named as a Representative Vendor in the 2024 Gartner®️ Market Guide for Digital Forensics and Incident Response Retainer Services Read More »

Chainguard raises $140 million to strengthen open source software security

Chainguard, Industry news / SecurityTicks

Chainguard raises $140 million to strengthen open source software security 2024-07-25 at 16:01 By Industry News Chainguard has completed a $140 million Series C round of funding led by Redpoint Ventures, Lightspeed Venture Partners, and IVP, bringing the company’s total funding raised to $256 million. Existing investors, including Amplify, Mantis VC, Sequoia Capital, and Spark

React to this headline:

Chainguard raises $140 million to strengthen open source software security Read More »

Kaspersky says Uncle Sam snubbed proposal to open up its code for third-party review

Uncategorized / SecurityTicks

Kaspersky says Uncle Sam snubbed proposal to open up its code for third-party review 2024-07-25 at 15:16 By Jessica Lyons Those national security threat claims? ‘No evidence,’ VP tells The Reg Exclusive Despite the Feds’ determination to ban Kaspersky’s security software in the US, the Russian business is moving forward with another proposal to open

React to this headline:

Kaspersky says Uncle Sam snubbed proposal to open up its code for third-party review Read More »

How to Get ChatGPT Unblocked at School: Easy & Free (2024)

Uncategorized / SecurityTicks

How to Get ChatGPT Unblocked at School: Easy & Free (2024) 2024-07-25 at 15:02 Many schools block access to AI tools like ChatGPT to prevent misuse during homework and exams. Yet, when used responsibly, ChatGPT can be an incredible resource for your research and help you gain an understanding of complex subjects. This guide will

React to this headline:

How to Get ChatGPT Unblocked at School: Easy & Free (2024) Read More »

Docker fixes critical auth bypass flaw, again (CVE-2024-41110)

containers, CVE, Docker, Don't miss, Hot stuff, News, security update, virtualization, vulnerability / SecurityTicks

Docker fixes critical auth bypass flaw, again (CVE-2024-41110) 2024-07-25 at 15:01 By Zeljka Zorz A critical-severity Docker Engine vulnerability (CVE-2024-41110) may be exploited by attackers to bypass authorization plugins (AuthZ) via specially crafted API request, allowing them to perform unauthorized actions, including privilege escalation. About CVE-2024-41110 CVE-2024-41110 is a vulnerability that can be exploited remotely,

React to this headline:

Docker fixes critical auth bypass flaw, again (CVE-2024-41110) Read More »

Creating a safer workplace: California Senate Bill 553 becomes law

Uncategorized / SecurityTicks

Creating a safer workplace: California Senate Bill 553 becomes law 2024-07-25 at 15:01 By From a security professional’s perspective, SB 553 will ultimately help security practitioners lobby for larger budgets. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source React to this headline:

React to this headline:

Creating a safer workplace: California Senate Bill 553 becomes law Read More »

AI models face collapse if they overdose on their own output

Uncategorized / SecurityTicks

AI models face collapse if they overdose on their own output 2024-07-25 at 14:46 By Lindsay Clark Recursive training leads to nonsense, study finds Researchers have found that the buildup of AI-generated content on the web is set to “collapse” machine learning models unless the industry can mitigate the risks.… This article is an excerpt

React to this headline:

AI models face collapse if they overdose on their own output Read More »

6 Types of Applications Security Testing You Must Know About

Uncategorized / SecurityTicks

6 Types of Applications Security Testing You Must Know About 2024-07-25 at 14:32 By While the specifics for security testing vary for applications, web applications, and APIs, a holistic and proactive applications security strategy is essential for all three types. There are six core types of testing that every security professional should know about to

React to this headline:

6 Types of Applications Security Testing You Must Know About Read More »

Meta Removes 63,000 Instagram Accounts Linked to Nigerian Sextortion Scams

Uncategorized / SecurityTicks

Meta Removes 63,000 Instagram Accounts Linked to Nigerian Sextortion Scams 2024-07-25 at 14:32 By Meta Platforms on Wednesday said it took steps to remove around 63,000 Instagram accounts in Nigeria that were found to target people with financial sextortion scams. “These included a smaller coordinated network of around 2,500 accounts that we were able to

React to this headline:

Meta Removes 63,000 Instagram Accounts Linked to Nigerian Sextortion Scams Read More »

July 2024