December 2024

Crooks stole AWS credentials from misconfigured sites then kept them in open S3 bucket

Crooks stole AWS credentials from misconfigured sites then kept them in open S3 bucket 2024-12-09 at 18:34 By Jessica Lyons ShinyHunters-linked heist thought to have been ongoing since March Exclusive  A massive online heist targeting AWS customers during which digital crooks abused misconfigurations in public websites and stole source code, thousands of credentials, and other […]

React to this headline:

Loading spinner

Crooks stole AWS credentials from misconfigured sites then kept them in open S3 bucket Read More »

From Vulnerabilities to Breaches: The Shiny Nemesis Cyber Operation

From Vulnerabilities to Breaches: The Shiny Nemesis Cyber Operation 2024-12-09 at 18:30 View original post at vpnMentor Independent cybersecurity experts Noam Rotem and Ran Locar have uncovered and reported to vpnMentor a cyber operation that exploited vulnerabilities in public sites, leading to unauthorized access to sensitive customer data, infrastructure credentials, and proprietary source code. This

React to this headline:

Loading spinner

From Vulnerabilities to Breaches: The Shiny Nemesis Cyber Operation Read More »

Microsoft: “Hack” this LLM-powered service and get paid

Microsoft: “Hack” this LLM-powered service and get paid 2024-12-09 at 18:04 By Zeljka Zorz Microsoft, in collaboration with the Institute of Science and Technology Australia and ETH Zurich, has announced the LLMail-Inject Challenge, a competition to test and improve defenses against prompt injection attacks. The setup and the challenge LLMail is a simulated email client

React to this headline:

Loading spinner

Microsoft: “Hack” this LLM-powered service and get paid Read More »

China strikes back with Nvidia antitrust probe as US tightens tech chokehold

China strikes back with Nvidia antitrust probe as US tightens tech chokehold 2024-12-09 at 17:05 By Dan Robinson Beijing cites GPU giant’s Mellanox merger conditions from four years ago Nvidia has been slapped with an antitrust probe by China’s state regulator, likely a response to US export restrictions as part of the ongoing chip wars

React to this headline:

Loading spinner

China strikes back with Nvidia antitrust probe as US tightens tech chokehold Read More »

Skyhigh Security strengthens data protection for Microsoft Copilot

Skyhigh Security strengthens data protection for Microsoft Copilot 2024-12-09 at 17:05 By Industry News Skyhigh Security announced the expansion of its purpose-built data protection capabilities to secure Microsoft Copilot, the fastest-growing AI solution in the enterprise. This latest milestone underscores Skyhigh Security’s commitment to enabling safe AI adoption, building on a series of strategic advancements

React to this headline:

Loading spinner

Skyhigh Security strengthens data protection for Microsoft Copilot Read More »

FTC orders Marriott to implement information security program

FTC orders Marriott to implement information security program 2024-12-09 at 17:05 By The FTC will require Marriott and its subsidiary Starwood Hotels & Resorts to implement an information security program following three data breaches. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source React to this headline:

React to this headline:

Loading spinner

FTC orders Marriott to implement information security program Read More »

Pilot explains the real reason phones need to be in airplane mode: ‘Not a conspiracy’

Pilot explains the real reason phones need to be in airplane mode: ‘Not a conspiracy’ 2024-12-09 at 16:21 By Ben Cost A pilot is going viral after answering a question that’s on every passenger’s mind — why do we need to toggle our smartphones to airplane mode before takeoff? This article is an excerpt from

React to this headline:

Loading spinner

Pilot explains the real reason phones need to be in airplane mode: ‘Not a conspiracy’ Read More »

OpenWrt orders router firmware updates after supply chain attack scare

OpenWrt orders router firmware updates after supply chain attack scare 2024-12-09 at 16:20 By Connor Jones A couple of bugs lead to a potentially bad time OpenWrt users should upgrade their images to the same version to protect themselves from a possible supply chain attack reported to the open source Wi-Fi router project last week.…

React to this headline:

Loading spinner

OpenWrt orders router firmware updates after supply chain attack scare Read More »

Cyble’s Weekly Vulnerability Report: Critical Flaws in Major Software Including Progress Software, QNAP, and 7-Zip

Cyble’s Weekly Vulnerability Report: Critical Flaws in Major Software Including Progress Software, QNAP, and 7-Zip 2024-12-09 at 16:20 By daksh sharma Overview The Cyble Research & Intelligence Labs (CRIL) has released its Weekly Vulnerability Insights Report, highlighting a series of critical vulnerabilities reported between November 27, 2024, and December 3, 2024. This week’s findings focus

React to this headline:

Loading spinner

Cyble’s Weekly Vulnerability Report: Critical Flaws in Major Software Including Progress Software, QNAP, and 7-Zip Read More »

Enhancing Cybersecurity in Higher Education: Trustwave and Curtin University’s Collaborative Journey

Enhancing Cybersecurity in Higher Education: Trustwave and Curtin University’s Collaborative Journey 2024-12-09 at 16:04 By The digital age has ushered in unprecedented opportunities for education, but it has also exposed institutions to an increasingly complex cyber threat landscape. This article is an excerpt from Trustwave Blog View Original Source React to this headline:

React to this headline:

Loading spinner

Enhancing Cybersecurity in Higher Education: Trustwave and Curtin University’s Collaborative Journey Read More »

RSA expands phishing-resistant, passwordless capabilities

RSA expands phishing-resistant, passwordless capabilities 2024-12-09 at 15:48 By Industry News RSA announced expanded phishing-resistant, passwordless capabilities. Built to secure financial services organizations, government agencies, healthcare, and other highly-regulated industries from the most frequent and highest-impact attacks, these new RSA capabilities meet the most stringent cybersecurity regulations and are a key asset in developing a

React to this headline:

Loading spinner

RSA expands phishing-resistant, passwordless capabilities Read More »

Hornetsecurity boosts 365 Total Backup with self-service recovery for end users

Hornetsecurity boosts 365 Total Backup with self-service recovery for end users 2024-12-09 at 15:33 By Industry News Hornetsecurity unveiled an upgraded version of its 365 Total Backup solution, introducing self-service recovery for end users while also offering full backup and recovery support for Microsoft OneNote. This new functionality is also available with 365 Total Protection

React to this headline:

Loading spinner

Hornetsecurity boosts 365 Total Backup with self-service recovery for end users Read More »

Extreme Platform ONE integrates networking and security with AI

Extreme Platform ONE integrates networking and security with AI 2024-12-09 at 15:19 By Industry News Extreme Networks unveiled Extreme Platform ONE, a technology platform that reduces the complexity for enterprises by seamlessly integrating networking, security and AI solutions. The platform’s AI-powered automation includes conversational, interactive and autonomous AI agents—to assist, advise and accelerate the productivity

React to this headline:

Loading spinner

Extreme Platform ONE integrates networking and security with AI Read More »

⚡ THN Recap: Top Cybersecurity Threats, Tools and Tips (Dec 2 – 8)

⚡ THN Recap: Top Cybersecurity Threats, Tools and Tips (Dec 2 – 8) 2024-12-09 at 15:19 By This week’s cyber world is like a big spy movie. Hackers are breaking into other hackers’ setups, sneaky malware is hiding in popular software, and AI-powered scams are tricking even the smartest of us. On the other side,

React to this headline:

Loading spinner

⚡ THN Recap: Top Cybersecurity Threats, Tools and Tips (Dec 2 – 8) Read More »

Microsoft flags Outlook issue in Windows 11 24H2

Microsoft flags Outlook issue in Windows 11 24H2 2024-12-09 at 14:48 By Richard Speed Meanwhile, new Outlook rollout looms for 365 Enterprise users Microsoft has admitted that an issue in Windows 11 24H2 could stop Outlook from starting. It has also been confirmed that Microsoft 365 Enterprise users will switch to the new Outlook in

React to this headline:

Loading spinner

Microsoft flags Outlook issue in Windows 11 24H2 Read More »

8Base hacked port operating company Luka Rijeka

8Base hacked port operating company Luka Rijeka 2024-12-09 at 14:48 By Zeljka Zorz Luka Rijeka, a company that offers maritime transport, port, storage of goods and forwarding services in Rijeka, Croatia, has been hacked by the 8Base ransomware group. The group claimed the attack on their dark web data leak site and professed that they’ve

React to this headline:

Loading spinner

8Base hacked port operating company Luka Rijeka Read More »

Researchers Uncover Prompt Injection Vulnerabilities in DeepSeek and Claude AI

Researchers Uncover Prompt Injection Vulnerabilities in DeepSeek and Claude AI 2024-12-09 at 14:18 By Details have emerged about a now-patched security flaw in the DeepSeek artificial intelligence (AI) chatbot that, if successfully exploited, could permit a bad actor to take control of a victim’s account by means of a prompt injection attack. Security researcher Johann

React to this headline:

Loading spinner

Researchers Uncover Prompt Injection Vulnerabilities in DeepSeek and Claude AI Read More »

Seven Bolt-Ons to Make Your Entra ID More Secure for Critical Sessions

Seven Bolt-Ons to Make Your Entra ID More Secure for Critical Sessions 2024-12-09 at 14:18 By Identity security is all the rage right now, and rightfully so. Securing identities that access an organization’s resources is a sound security model. But IDs have their limits, and there are many use cases when a business should add

React to this headline:

Loading spinner

Seven Bolt-Ons to Make Your Entra ID More Secure for Critical Sessions Read More »

Socks5Systemz Botnet Powers Illegal Proxy Service with 85,000+ Hacked Devices

Socks5Systemz Botnet Powers Illegal Proxy Service with 85,000+ Hacked Devices 2024-12-09 at 14:18 By A malicious botnet called Socks5Systemz is powering a proxy service called PROXY.AM, according to new findings from Bitsight. “Proxy malware and services enable other types of criminal activity adding uncontrolled layers of anonymity to the threat actors, so they can perform

React to this headline:

Loading spinner

Socks5Systemz Botnet Powers Illegal Proxy Service with 85,000+ Hacked Devices Read More »

Microsoft dangles $10K for hackers to hijack LLM email service

Microsoft dangles $10K for hackers to hijack LLM email service 2024-12-09 at 13:18 By Jessica Lyons Outsmart an AI, win a little Christmas cash Microsoft and friends have challenged AI hackers to break a simulated LLM-integrated email client with a prompt injection attack – and the winning teams will share a $10,000 prize pool.… This

React to this headline:

Loading spinner

Microsoft dangles $10K for hackers to hijack LLM email service Read More »

Scroll to Top