2024

Fortra Patches Critical RCE Vulnerability in FileCatalyst Transfer Tool 2024-03-19 at 01:02 By Fortra has released details of a now-patched critical security flaw impacting its FileCatalyst file transfer solution that could allow unauthenticated attackers to gain remote code execution on susceptible servers. Tracked as CVE-2024-25153, the shortcoming carries a CVSS score of 9.8 out of a maximum

Don’t be like these 900+ websites and expose millions of passwords via Firebase 2024-03-18 at 23:29 By Thomas Claburn Warning: Poorly configured Google Cloud databases spill billing info, plaintext credentials At least 900 websites built with Google’s Firebase, a cloud database, have been misconfigured, leaving credentials, personal info, and other sensitive data inadvertently exposed to

Fujitsu reveals malware installed on internal systems, risk of customer data spill 2024-03-18 at 22:30 By Jessica Lyons Sneaky software slips past shields, spurring scramble Fujitsu has confirmed that miscreants have compromised some of its internal computers, deployed malware, and may have stolen some customer information.… This article is an excerpt from The Register View

Nvidia turns up the AI heat with 1,200W Blackwell GPUs 2024-03-18 at 22:27 By Tobias Mann 5x the performance of the H100, but you’ll need liquid cooling to tame the beast For all the sabre-rattling from AMD and Intel, Nvidia remains, without question, the dominant provider of AI infrastructure. With today’s debut of the Blackwell

YouTube creators must now ‘fess up to using AI in vids 2024-03-18 at 21:31 By Brandon Vigliarolo Not everything requires tagging so feel free to maintain unrealistic beauty standards YouTube has warned content creators that, beginning today, certain uses of AI in their videos must be clearly labeled.… This article is an excerpt from The

More than 133,000 Fortinet appliances still vulnerable to month-old critical bug 2024-03-18 at 21:00 By Connor Jones A huge attack surface for a vulnerability with various PoCs available The volume of Fortinet boxes exposed to the public internet and vulnerable to a month-old critical security flaw in FortiOS is still extremely high, despite a gradual

New DEEP#GOSU Malware Campaign Targets Windows Users with Advanced Tactics 2024-03-18 at 19:56 By A new elaborate attack campaign has been observed employing PowerShell and VBScript malware to infect Windows systems and harvest sensitive information. Cybersecurity company Securonix, which dubbed the campaign DEEP#GOSU, said it’s likely associated with the North Korean state-sponsored group tracked as Kimsuky.

Report reveals an increase in cloud account compromise incidents 2024-03-18 at 18:00 By A new report highlights new and continuing threat trends that security leaders must prepare to face in the coming years.  This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source

Streamlining ZTNA Administration 2024-03-18 at 17:48 By Stanislav Elenkrich The Cornerstone of ZTNA Transformation This article is an excerpt from Broadcom Software Blogs View Original Source

Charles Henderson hired as EVP of Cyber Security at Coalfire 2024-03-18 at 17:34 By Charles Henderson was hired as EVP of Cyber Security at Coalfire with experience in threat intelligence, incident response and penetration testing. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source

Microsoft reseller Bytes says more than 100 undisclosed share trades linked to ex-CEO 2024-03-18 at 15:17 By Richard Speed Surprise resignation of chief exec happened after FCA probe began, claims filing One of Micrsoft’s largest cloud and tech licensing resellers, Bytes Technology Group (BTG), today gave the London Stock Exchange an update on the investigation