September, 2024 - Security Ticks

Zyxel Patches Critical Vulnerabilities in Networking Devices

Zyxel Patches Critical Vulnerabilities in Networking Devices 2024-09-04 at 15:31 By Ionut Arghire Zyxel has released patches for multiple vulnerabilities in its networking devices, including a critical flaw impacting access points and security routers. The post Zyxel Patches Critical Vulnerabilities in Networking Devices appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS […]

Zyxel Patches Critical Vulnerabilities in Networking Devices Read More »

There was a 56% increase in ransomware groups in H1 2024

Uncategorized / SecurityTicks

There was a 56% increase in ransomware groups in H1 2024 2024-09-04 at 15:17 By There was a 56% increase in the number of active ransomware groups compared to H1 2023, reflecting a diversification of the ransomware landscape. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source

There was a 56% increase in ransomware groups in H1 2024 Read More »

Security experts discuss CISA’s cyber incident reporting portal

Uncategorized / SecurityTicks

Security experts discuss CISA’s cyber incident reporting portal 2024-09-04 at 15:17 By CISA announced its Voluntary Cyber Incident Reporting portal is now live, and security leaders are sharing their insights. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source

Security experts discuss CISA’s cyber incident reporting portal Read More »

Double Debian update: 11.11 and 12.7 arrive at once

Uncategorized / SecurityTicks

Double Debian update: 11.11 and 12.7 arrive at once 2024-09-04 at 14:32 By Liam Proven But Bullseye’s days are numbered and it’s time to think about upgrading The latest update to Debian “Bookworm” arrives at the same time as the last ever update to “Bullseye,” and there’s trouble ahead for Nvidia legacy users.… This article

Double Debian update: 11.11 and 12.7 arrive at once Read More »

The New Effective Way to Prevent Account Takeovers

Uncategorized / SecurityTicks

The New Effective Way to Prevent Account Takeovers 2024-09-04 at 14:31 By Account takeover attacks have emerged as one of the most persistent and damaging threats to cloud-based SaaS environments. Yet despite significant investments in traditional security measures, many organizations continue to struggle with preventing these attacks. A new report, “Why Account Takeover Attacks Still

The New Effective Way to Prevent Account Takeovers Read More »

Prompt Security helps organizations monitor data shared with Microsoft 365 Copilot

Industry news, Prompt Security / SecurityTicks

Prompt Security helps organizations monitor data shared with Microsoft 365 Copilot 2024-09-04 at 14:01 By Industry News Prompt Security launched a security and governance solution for Copilot for Microsoft 365, marking a significant milestone in GenAI Security for enterprise applications. As organizations rapidly adopt GenAI tools to boost productivity and innovation, the need for robust

Prompt Security helps organizations monitor data shared with Microsoft 365 Copilot Read More »

Do look up! NASA unfurls massive shiny solar sail in orbit

Uncategorized / SecurityTicks

Do look up! NASA unfurls massive shiny solar sail in orbit 2024-09-04 at 13:47 By Iain Thomson 60 years since Arthur C Clarke wrote Sunjammer, space agency catches up NASA has successfully extended into orbit an 80 m2 (860 square foot) sail that is designed to catch emissions from the Sun and convert them into

Do look up! NASA unfurls massive shiny solar sail in orbit Read More »

White House Outlines Plan for Addressing BGP Vulnerabilities

BGP, Government, Government Policy, White House / SecurityTicks

White House Outlines Plan for Addressing BGP Vulnerabilities 2024-09-04 at 13:46 By Eduard Kovacs The White House has released a roadmap for addressing internet routing (BGP) security issues, mainly through RPKI adoption. The post White House Outlines Plan for Addressing BGP Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

White House Outlines Plan for Addressing BGP Vulnerabilities Read More »

D-Link Warns of Code Execution Flaws in Discontinued Router Model

D-Link, Vulnerabilities, vulnerability / SecurityTicks

D-Link Warns of Code Execution Flaws in Discontinued Router Model 2024-09-04 at 13:46 By Ionut Arghire D-Link warns of multiple remote code execution vulnerabilities impacting its discontinued DIR-846 router model. The post D-Link Warns of Code Execution Flaws in Discontinued Router Model appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

D-Link Warns of Code Execution Flaws in Discontinued Router Model Read More »

Vulnerability allows Yubico security keys to be cloned

Don't miss, Encryption, hardware, Hot stuff, Infineon Technologies, MFA, News, research, security key, Yubico / SecurityTicks

Vulnerability allows Yubico security keys to be cloned 2024-09-04 at 13:31 By Zeljka Zorz Researchers have unearthed a cryptographic vulnerability in popular Yubico (FIDO) hardware security keys and modules that may allow attackers to clone the devices. But the news is not as catastrophic as it may seem at first glance. “The attacker would need

Vulnerability allows Yubico security keys to be cloned Read More »

Admins wonder if the cloud was such a good idea after all

Uncategorized / SecurityTicks

Admins wonder if the cloud was such a good idea after all 2024-09-04 at 13:16 By Richard Speed As AWS, Microsoft and Gogle hike some prices, it’s time to open up the ROI calculator After an initial euphoric rush to the cloud, administrators are questioning the value and promise of the tech giant’s services.… This

Admins wonder if the cloud was such a good idea after all Read More »

Proofpoint launches NIST-inspired framework to tackle data loss prevention challenges

Industry news, Proofpoint / SecurityTicks

Proofpoint launches NIST-inspired framework to tackle data loss prevention challenges 2024-09-04 at 13:01 By Industry News Proofpoint launched a proprietary, partner-friendly, end-to-end information protection framework, providing organizations access to expertise, industry benchmark data and proven methodology in designing, implementing and maturing data loss prevention (DLP) programs. While DLP programs and technology are undoubtedly maturing, only

Proofpoint launches NIST-inspired framework to tackle data loss prevention challenges Read More »

Android’s September 2024 Update Patches Exploited Vulnerability

Android, exploited, Featured, Mobile & Wireless / SecurityTicks

Android’s September 2024 Update Patches Exploited Vulnerability 2024-09-04 at 12:48 By Ionut Arghire Google has released Android security updates to patch an exploited local privilege escalation vulnerability. The post Android’s September 2024 Update Patches Exploited Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

Android’s September 2024 Update Patches Exploited Vulnerability Read More »

The amber glow of bork illuminates Brighton Station

Uncategorized / SecurityTicks

The amber glow of bork illuminates Brighton Station 2024-09-04 at 12:31 By Richard Speed The train on platform 4 is destined for networking hell BORK!BORK!BORK! Strange things are afoot at Brighton Station as football fans keen to make the journey to London to see their team take on England’s finest instead found themselves destined for

The amber glow of bork illuminates Brighton Station Read More »

Clearview AI Faces €30.5M Fine for Building Illegal Facial Recognition Database

Uncategorized / SecurityTicks

Clearview AI Faces €30.5M Fine for Building Illegal Facial Recognition Database 2024-09-04 at 12:16 By The Dutch Data Protection Authority (Dutch DPA) has imposed a fine of €30.5 million ($33.7 million) against facial recognition firm Clearview AI for violating the General Data Protection Regulation (GDPR) in the European Union (E.U.) by building an “illegal database

Clearview AI Faces €30.5M Fine for Building Illegal Facial Recognition Database Read More »

Samba 4.21 comes with upgraded security features

networking, News, open source, Samba, software / SecurityTicks

Samba 4.21 comes with upgraded security features 2024-09-04 at 12:01 By Help Net Security Samba is the standard suite of programs that enables seamless interoperability between Linux/Unix and Windows systems. Version 4.21 has been officially released. Hardening In previous versions of Samba, if a user or group name in either option could not be resolved

Samba 4.21 comes with upgraded security features Read More »

What is this computing industry anyway? The dawning era of 32-bit micros

Uncategorized / SecurityTicks

What is this computing industry anyway? The dawning era of 32-bit micros 2024-09-04 at 11:46 By Liam Proven And you may ask yourself, ‘How do I work this?’ And you may ask yourself, ‘Where is that large computer?’ Part 3 This is the third part of The Register FOSS desk’s roundup of some of the

What is this computing industry anyway? The dawning era of 32-bit micros Read More »

Expert Insights: What’s New in Web Trends 2024

Uncategorized / SecurityTicks

Expert Insights: What’s New in Web Trends 2024 2024-09-04 at 11:44 View original post at Website Planet As the digital landscape continues to evolve, web design trends are at the forefront of creating more engaging, efficient, and user-friendly online experiences. Website Planet reached out to industry leaders for their expert opinions on what to expect

Expert Insights: What’s New in Web Trends 2024 Read More »

TA-FudModule Rootkit Targets Crypto, Linked to North Korean Citrine Sleet Group

Threat Actor / SecurityTicks

TA-FudModule Rootkit Targets Crypto, Linked to North Korean Citrine Sleet Group 2024-09-04 at 11:16 By Cyble Key Takeaways Overview The Citrine Sleet threat actor group was observed by Microsoft researchers exploiting the CVE-2024-7971 zero-day vulnerability in the V8 JavaScript and WebAssembly engine, which affects versions of Chromium prior to 128.0.6613.84. By exploiting this vulnerability, the

TA-FudModule Rootkit Targets Crypto, Linked to North Korean Citrine Sleet Group Read More »

Earth Lusca Uses KTLVdoor Backdoor for Multiplatform Intrusion

Trend Micro Research : Articles, News, Reports, Trend Micro Research : Malware, Trend Micro Research : Research / SecurityTicks

Earth Lusca Uses KTLVdoor Backdoor for Multiplatform Intrusion 2024-09-04 at 11:02 By While monitoring Earth Lusca, we discovered the threat group’s use of KTLVdoor, a highly obfuscated multiplatform backdoor, as part of a large-scale attack campaign. This article is an excerpt from Trend Micro Research, News and Perspectives View Original Source

Earth Lusca Uses KTLVdoor Backdoor for Multiplatform Intrusion Read More »