Hydden raises $4.4 million to improve identity security 2024-09-18 at 11:01 By Industry News Hydden announced that it has closed $4.4 million in seed funding led by Access Venture Partners. Other investors include Lockstep, the venture fund of CISOs Rinki Sethi and Lucas Moody, Service Provider Capital, and several cybersecurity angel investors including Andy Grolnick […]
Hydden raises $4.4 million to improve identity security Read More »
Python in Excel goes live – but only for certain Windows users 2024-09-18 at 10:31 By Brandon Vigliarolo Mac and Android loyals: you can look, but no calculation for now Office power users, rejoice: Python in Excel is now generally available – provided you have the right license and machine. … This article is an excerpt
Python in Excel goes live – but only for certain Windows users Read More »
GSMA Plans End-to-End Encryption for Cross-Platform RCS Messaging 2024-09-18 at 10:01 By The GSM Association, the governing body that oversees the development of the Rich Communications Services (RCS) protocol, on Tuesday, said it’s working towards implementing end-to-end encryption (E2EE) to secure messages sent between the Android and iOS ecosystems. “The next major milestone is for
GSMA Plans End-to-End Encryption for Cross-Platform RCS Messaging Read More »
New RFC explains how protocol developers can avoid building human rights abuses into the internet 2024-09-18 at 09:46 By Simon Sharwood Something tells us Vlad and Xi probably won’t bother reading it The Internet Research Task Force has published a Request For Comments document its authors hope will mean developers of comms protocols and architectures
China’s tech giants buy into Indonesia – just like US tech giants did in India 2024-09-18 at 09:03 By Laura Dobberstein GoTo commits to the Alibaba Cloud, and Alibaba promises not to sell its stake Chinese tech giant Alibaba showed it’s not just Meta, Google and Amazon that can use their financial heft to buy
China’s tech giants buy into Indonesia – just like US tech giants did in India Read More »
Patch Issued for Critical VMware vCenter Flaw Allowing Remote Code Execution 2024-09-18 at 09:02 By Broadcom on Tuesday released updates to address a critical security flaw impacting VMware vCenter Server that could pave the way for remote code execution. The vulnerability, tracked as CVE-2024-38812 (CVSS score: 9.8), has been described as a heap-overflow vulnerability in
Patch Issued for Critical VMware vCenter Flaw Allowing Remote Code Execution Read More »
CrowdSec: Open-source security solution offering crowdsourced protection 2024-09-18 at 08:01 By Mirko Zorz Crowdsec is an open-source solution that offers crowdsourced protection against malicious IPs. CrowdSec features For this project, the developers have two objectives: Provide free top-quality intrusion detection and protection software. There’s community participation in creating new detection rules as new vulnerabilities are
CrowdSec: Open-source security solution offering crowdsourced protection Read More »
Detecting vulnerable code in software dependencies is more complex than it seems 2024-09-18 at 07:31 By Mirko Zorz In this Help Net Security interview, Henrik Plate, CISSP, security researcher, Endor Labs, discusses the complexities AppSec teams face in identifying vulnerabilities within software dependencies. Plate also discusses the limitations of traditional software composition analysis (SCA) solutions
Detecting vulnerable code in software dependencies is more complex than it seems Read More »
Transform what video intelligence can become with AI 2024-09-18 at 07:16 By Many valuable use cases beyond security monitoring exist, but they come with more considerations and require deeper collaboration. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source
Transform what video intelligence can become with AI Read More »
The proliferation of non-human identities 2024-09-18 at 07:01 By Mirko Zorz 97% of non-human identities (NHIs) have excessive privileges, increasing unauthorized access and broadening the attack surface, according to Entro Security’s 2025 State of Non-Human Identities and Secrets in Cybersecurity report. 92% of organizations expose NHIs to third parties, resulting in unauthorized access if third-party
The proliferation of non-human identities Read More »
Cybersecurity jobs available right now: September 18, 2024 2024-09-18 at 06:31 By Anamarija Pogorelec Application Security Engineer CHANEL | France | On-site – View job details As an Application Security Engineer, you will perform application-focus, offensive, security assessments of existing and upcoming Chanel’s features and products. Enforce smart CI/CD security tooling (SAST, dependencies checker, IAST,
Cybersecurity jobs available right now: September 18, 2024 Read More »
Organizations overwhelmed by numerous and insecure remote access tools 2024-09-18 at 06:01 By Help Net Security Organizations are combating excessive remote access demands with an equally excessive number of tools that provide varying degrees of security, according to Claroty. Data from more than 50,000 remote-access-enabled devices showed that the volume of remote access tools deployed
Organizations overwhelmed by numerous and insecure remote access tools Read More »
Australian Police conducted supply chain attack on criminal collaborationware 2024-09-18 at 05:46 By Simon Sharwood Sting led to cuffing of alleged operator behind Ghost – an app for drug trafficking, money laundering, and violence-as-a-service Australia’s Federal Police (AFP) yesterday arrested and charged a man with creating and administering an app named Ghost that was allegedly
Australian Police conducted supply chain attack on criminal collaborationware Read More »
Open source orgs strengthen alliance against patent trolls 2024-09-18 at 03:47 By Thomas Claburn The more successful FOSS gets, the more it becomes a target Patent trolls are increasingly targeting cloud native open source projects, leading the Cloud Native Computing Foundation and Linux Foundation to make efforts to extend their legal shields over such efforts.…
Open source orgs strengthen alliance against patent trolls Read More »
WhatsApp fix to make View Once chats actually disappear is beaten in less than a week 2024-09-18 at 03:31 By Iain Thomson View Forever, more like it, as Meta’s privacy feature again revealed to be futile with a little light hacking A fix deployed by Meta to stop people repeatedly viewing WhatsApp’s so-called View Once
WhatsApp fix to make View Once chats actually disappear is beaten in less than a week Read More »
Hundreds of Pagers Exploded in Lebanon and Syria in a Deadly Attack. Here’s What We Know. 2024-09-18 at 00:46 By Associated Press Very small explosive devices may have been built into the pagers prior to their delivery to Hezbollah, and then all remotely triggered simultaneously. The post Hundreds of Pagers Exploded in Lebanon and Syria
VMware patches over remote make-me-root holes in vCenter Server, Cloud Foundation 2024-09-18 at 00:01 By Iain Thomson Bug reports made in China Broadcom has emitted a pair of patches for vulnerabilities in VMware vCenter Server that a miscreant with network access to the software could exploit to completely commandeer a system. This also affects Cloud
VMware patches over remote make-me-root holes in vCenter Server, Cloud Foundation Read More »
No major AI model is safe, but some do better than others 2024-09-17 at 23:46 By Thomas Claburn Anthropic Claude 3.5 shines in Chatterbox Labs safety test Feature Anthropic has positioned itself as a leader in AI safety, and in a recent analysis by Chatterbox Labs, that proved to be the case.… This article is
No major AI model is safe, but some do better than others Read More »
Google Cloud Document AI flaw (still) allows data theft despite bounty payout 2024-09-17 at 23:31 By Jessica Lyons Chocolate Factory downgrades risk, citing the need for attacker access Overly permissive settings in Google Cloud’s Document AI service could be abused by data thieves to break into Cloud Storage buckets and steal sensitive information.… This article
Google Cloud Document AI flaw (still) allows data theft despite bounty payout Read More »
Hey kids, wanna clock the ISS? ESA’s Astro Pi challenge runs your code in space 2024-09-17 at 22:32 By Richard Speed Send astronauts nice pixel art, or try something a little harder The next round of the European Space Agency’s Astro Pi challenge is open, inviting participants to use the diminutive computers aboard the International
Hey kids, wanna clock the ISS? ESA’s Astro Pi challenge runs your code in space Read More »