October, 2024 - Security Ticks

CISA adds fresh Ivanti vuln, critical Fortinet bug to hall of shame

CISA adds fresh Ivanti vuln, critical Fortinet bug to hall of shame 2024-10-10 at 16:46 By Connor Jones Usual three-week window to address significant risks to federal agencies applies The US Cybersecurity and Infrastructure Security Agency (CISA) says vulnerabilities in Fortinet and Ivanti products are now being exploited, earning them places in its Known Exploited […]

React to this headline:

CISA adds fresh Ivanti vuln, critical Fortinet bug to hall of shame Read More »

Simbian unveils AI Agents to address the top pain points for SOC analysts

Industry news, Simbian / SecurityTicks

Simbian unveils AI Agents to address the top pain points for SOC analysts 2024-10-10 at 16:33 By Industry News Simbian announced a suite of AI Agents that work alongside security teams to enhance the intelligence, speed, and coverage of their entire security program. The suite of AI Agents, which runs on the Simbian Security Accelerator

React to this headline:

Simbian unveils AI Agents to address the top pain points for SOC analysts Read More »

OpenAI Blocks 20 Global Malicious Campaigns Using AI for Cybercrime and Disinformation

Uncategorized / SecurityTicks

OpenAI Blocks 20 Global Malicious Campaigns Using AI for Cybercrime and Disinformation 2024-10-10 at 16:32 By OpenAI on Wednesday said it has disrupted more than 20 operations and deceptive networks across the world that attempted to use its platform for malicious purposes since the start of the year. This activity encompassed debugging malware, writing articles

React to this headline:

OpenAI Blocks 20 Global Malicious Campaigns Using AI for Cybercrime and Disinformation Read More »

PC shipments stuck in neutral despite AI buzz

Uncategorized / SecurityTicks

PC shipments stuck in neutral despite AI buzz 2024-10-10 at 16:03 By Dan Robinson Analysts can’t agree whether market is marginally up or down The PC market is not showing many signs of a rebound, despite the hype around AI PCs, with market watchers split over whether unit shipments are up or down slightly.… This

React to this headline:

PC shipments stuck in neutral despite AI buzz Read More »

How Microsoft E5 Security Helps Protect Healthcare and Patient Data

Compliance, Database Protection, database security, Microsoft Security, SIEM/SOC, Tips & Tricks / SecurityTicks

How Microsoft E5 Security Helps Protect Healthcare and Patient Data 2024-10-10 at 16:01 By In the healthcare industry, safeguarding patient data is not just a regulatory requirement but a moral imperative. This article is an excerpt from Trustwave Blog View Original Source React to this headline:

React to this headline:

How Microsoft E5 Security Helps Protect Healthcare and Patient Data Read More »

Ketch Third Party Risk Intelligence provides control over trackers, tags, and cookies

Industry news, Ketch / SecurityTicks

Ketch Third Party Risk Intelligence provides control over trackers, tags, and cookies 2024-10-10 at 16:01 By Industry News Ketch launched Third Party Risk Intelligence, a new suite of diagnostics and management tools for brands to manage how third party vendors collect data across digital properties. As regulatory enforcement increases and wiretapping lawsuits surge, businesses face

React to this headline:

Ketch Third Party Risk Intelligence provides control over trackers, tags, and cookies Read More »

Experts Warn of Critical Unpatched Vulnerability in Linear eMerge E3 Systems

Uncategorized / SecurityTicks

Experts Warn of Critical Unpatched Vulnerability in Linear eMerge E3 Systems 2024-10-10 at 15:46 By Cybersecurity security researchers are warning about an unpatched vulnerability in Nice Linear eMerge E3 access controller systems that could allow for the execution of arbitrary operating system (OS) commands. The flaw, assigned the CVE identifier CVE-2024-9441, carries a CVSS score

React to this headline:

Experts Warn of Critical Unpatched Vulnerability in Linear eMerge E3 Systems Read More »

watchTowr raises $19 million to accelerate global growth

Industry news, WatchTowr / SecurityTicks

watchTowr raises $19 million to accelerate global growth 2024-10-10 at 15:31 By Industry News watchTowr announced a $19 million Series A funding round led by Peak XV, formerly known as Sequoia India & Southeast Asia, with repeat participation from Prosus Ventures and Cercano Management. The company will use the funds to capture market leadership and

React to this headline:

watchTowr raises $19 million to accelerate global growth Read More »

Actively exploited Firefox zero-day fixed, update ASAP! (CVE-2024-9680)

CVE, Don't miss, ESET, Firefox, Hot stuff, News, security update, Tor, vulnerability / SecurityTicks

Actively exploited Firefox zero-day fixed, update ASAP! (CVE-2024-9680) 2024-10-10 at 15:31 By Zeljka Zorz Mozilla has pushed out an emergency update for its Firefox and Firefox ESR browsers to fix a vulnerability (CVE-2024-9680) that is being exploited in the wild. About CVE-2024-9680 Reported by ESET malware researcher Damien Schaeffer, CVE-2024-9680 is a use-after-free vulnerability in

React to this headline:

Actively exploited Firefox zero-day fixed, update ASAP! (CVE-2024-9680) Read More »

Cyble Urges ICS Vulnerability Fixes for TEM, Mitsubishi, and Delta Electronics

Delta Electronics, Mitsubishi, TEM, vulnerability / SecurityTicks

Cyble Urges ICS Vulnerability Fixes for TEM, Mitsubishi, and Delta Electronics 2024-10-10 at 15:18 By dakshsharma16 Key Takeaways Overview Cyble researchers have identified vulnerabilities in three products used in critical infrastructure environments that merit high-priority attention from security teams. Cyble’s weekly industrial control system/operational technology (ICS/OT) vulnerability report for Oct. 1-7 investigated 10 vulnerabilities in

React to this headline:

Cyble Urges ICS Vulnerability Fixes for TEM, Mitsubishi, and Delta Electronics Read More »

62% of observed finance domains involved in phishing attacks

Uncategorized / SecurityTicks

62% of observed finance domains involved in phishing attacks 2024-10-10 at 15:18 By Among observed financial domains, 62% were determined to be connected to phishing attacks that target legitimate institutions through spoofing websites. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source React to this headline:

React to this headline:

62% of observed finance domains involved in phishing attacks Read More »

Researchers discover 14 new DrayTek vulnerabilities

Uncategorized / SecurityTicks

Researchers discover 14 new DrayTek vulnerabilities 2024-10-10 at 15:17 By 14 additional network vulnerabilities in DrayTek routers were discovered in a recent Forescout Technologies report, putting user data at risk. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source React to this headline:

React to this headline:

Researchers discover 14 new DrayTek vulnerabilities Read More »

Fivecast Discovery drives better analytical outputs

Fivecast, Industry news / SecurityTicks

Fivecast Discovery drives better analytical outputs 2024-10-10 at 15:01 By Industry News Responding directly to an increased global threat environment, Fivecast launched a Discovery solution that empowers analysts and investigators across both the Government and Corporate sectors to uncover intelligence insights faster to help protect communities and businesses. Fivecast Discovery automates and accelerates the processes

React to this headline:

Fivecast Discovery drives better analytical outputs Read More »

Mozilla patches critical Firefox vuln that attackers are already exploiting

Uncategorized / SecurityTicks

Mozilla patches critical Firefox vuln that attackers are already exploiting 2024-10-10 at 14:46 By Connor Jones Firefixed: It’s maintenance time for low-complexity, high-impact security flaw It’s patch time for Firefox fans as Mozilla issues a security advisory for a critical code execution vulnerability in the browser.… This article is an excerpt from The Register View

React to this headline:

Mozilla patches critical Firefox vuln that attackers are already exploiting Read More »

6 Simple Steps to Eliminate SOC Analyst Burnout

Uncategorized / SecurityTicks

6 Simple Steps to Eliminate SOC Analyst Burnout 2024-10-10 at 14:46 By The current SOC model relies on a scarce resource: human analysts. These professionals are expensive, in high demand, and increasingly difficult to retain. Their work is not only highly technical and high-risk, but also soul-crushingly repetitive, dealing with a constant flood of alerts

React to this headline:

6 Simple Steps to Eliminate SOC Analyst Burnout Read More »

Version 7.6 – the ‘OpenBSD of Theseus’ – released

Uncategorized / SecurityTicks

Version 7.6 – the ‘OpenBSD of Theseus’ – released 2024-10-10 at 13:47 By Liam Proven Ideal for black-clad ultra-minimalist types. You probably wouldn’t like it OpenBSD is arguably the most secure general-purpose OS for general-purpose computers. This version has better laptop support, includes more Arm64 kit, and brings hardware-accelerated video playback.… This article is an

React to this headline:

Version 7.6 – the ‘OpenBSD of Theseus’ – released Read More »

Advania UK gobbles up IT services rival CCS Media

Uncategorized / SecurityTicks

Advania UK gobbles up IT services rival CCS Media 2024-10-10 at 12:46 By Richard Speed Acquisition signals consolidation in the market Exclusive The consolidation of the British tech services market is continuing with Advania UK’s acquisition of CCS Media.… This article is an excerpt from The Register View Original Source React to this headline:

React to this headline:

Advania UK gobbles up IT services rival CCS Media Read More »

Internet Archive data breach, defacement, and DDoS: Users’ data compromised

data breach, Data leak, DDoS, Don't miss, HIBP, Hot stuff, Internet Archive, News / SecurityTicks

Internet Archive data breach, defacement, and DDoS: Users’ data compromised 2024-10-10 at 12:46 By Zeljka Zorz The Internet Archive has suffered a data breach, leading to the compromise of email addresses, screen names and bcrypt password hashes of some 31 million users. The compromise was revealed on Wednesday afternoon, when the digital library’s website began

React to this headline:

Internet Archive data breach, defacement, and DDoS: Users’ data compromised Read More »

Post Office CEO tells inquiry leadership was in ‘dream world’ over Horizon scandal

Uncategorized / SecurityTicks

Post Office CEO tells inquiry leadership was in ‘dream world’ over Horizon scandal 2024-10-10 at 11:46 By Lindsay Clark Hired in 2019, he claims the recruitment failed to mention ongoing litigation The chief executive of the Post Office has agreed the organization’s leadership team was living in a “dream world” in the months leading up

React to this headline:

Post Office CEO tells inquiry leadership was in ‘dream world’ over Horizon scandal Read More »

Qualys Enterprise TruRisk Management unifies asset inventory and risk factors

Industry news, Qualys / SecurityTicks

Qualys Enterprise TruRisk Management unifies asset inventory and risk factors 2024-10-10 at 11:34 By Industry News Qualys launched the Risk Operations Center (ROC) with Enterprise TruRisk Management (ETM). The solution enables CISOs and business leaders to manage cybersecurity risks in real time, transforming fragmented, siloed data into actionable insights that align cyber risk operations with business

React to this headline:

Qualys Enterprise TruRisk Management unifies asset inventory and risk factors Read More »

October 2024