2025 - Security Ticks

Sean Cairncross is Trump Nominee for National Cyber Director

CISA, Government, Management & Strategy, National Cyber Director, Sean Cairncross, Sean Plankey / SecurityTicks

Sean Cairncross is Trump Nominee for National Cyber Director 2025-02-14 at 17:03 By Ryan Naraine Former RNC official Sean Cairncross has been nominated for the post of National Cyber Director to streamline the US cybersecurity strategy. The post Sean Cairncross is Trump Nominee for National Cyber Director appeared first on SecurityWeek. This article is an […]

React to this headline:

Sean Cairncross is Trump Nominee for National Cyber Director Read More »

State Department halts plan to buy $400M worth of Musk’s Tesla armored vehicles

Uncategorized / SecurityTicks

State Department halts plan to buy $400M worth of Musk’s Tesla armored vehicles 2025-02-14 at 16:46 By Associated Press The State Department halted plan with Elon Musk’s Tesla company to buy armored electric vehicles by the Trump administration after reports emerged about a potential $400 million purchase. This article is an excerpt from Latest Technology News and

React to this headline:

State Department halts plan to buy $400M worth of Musk’s Tesla armored vehicles Read More »

‘Crazy Elon’ follows Twitter playbook to rile rival Sam Altman

Uncategorized / SecurityTicks

‘Crazy Elon’ follows Twitter playbook to rile rival Sam Altman 2025-02-14 at 16:24 By Charles Gasparino So how much is OpenAI worth? The potential of its revolutionary technology — to advance science, medicine and tech — is real, and it’s definitely worth more than the two Twitters-plus Musk is offering, bankers say. This article is

React to this headline:

‘Crazy Elon’ follows Twitter playbook to rile rival Sam Altman Read More »

Critical PostgreSQL bug tied to zero-day attack on US Treasury

Uncategorized / SecurityTicks

Critical PostgreSQL bug tied to zero-day attack on US Treasury 2025-02-14 at 16:24 By Connor Jones High-complexity bug unearthed by infoseccers, as Rapid7 probes exploit further A high-severity SQL injection bug in the PostgreSQL interactive tool was exploited alongside the zero-day used to break into the US Treasury in December, researchers say.… This article is

React to this headline:

Critical PostgreSQL bug tied to zero-day attack on US Treasury Read More »

Threat actors are using legitimate Microsoft feature to compromise M365 accounts

account hijacking, cyber espionage, Don't miss, Government, government-backed attacks, Hot stuff, Microsoft, Microsoft 365, News, social engineering, spear-phishing, Volexity / SecurityTicks

Threat actors are using legitimate Microsoft feature to compromise M365 accounts 2025-02-14 at 16:23 By Zeljka Zorz Suspected Russian threat actors have been taking advantage of Microsoft Device Code Authentication to trick targets into granting them access to their Microsoft 365 (M365) accounts. “While Device Code Authentication attacks are not new, they appear to have

React to this headline:

Threat actors are using legitimate Microsoft feature to compromise M365 accounts Read More »

Rising Tides: Lesley Carhart on Bridging Enterprise Security and OT—and Improving the Human Condition

ICS/OT, Management & Strategy, OT, Rising Tides / SecurityTicks

Rising Tides: Lesley Carhart on Bridging Enterprise Security and OT—and Improving the Human Condition 2025-02-14 at 15:45 By Jennifer Leggio In the latest edition of “Rising Tides” we talk with Lesley Carhart, Technical Director of Incident Response at Dragos. The post Rising Tides: Lesley Carhart on Bridging Enterprise Security and OT—and Improving the Human Condition

React to this headline:

Rising Tides: Lesley Carhart on Bridging Enterprise Security and OT—and Improving the Human Condition Read More »

Meta Paid Out Over $2.3 Million in Bug Bounties in 2024

bug bounty program, Meta, Vulnerabilities / SecurityTicks

Meta Paid Out Over $2.3 Million in Bug Bounties in 2024 2025-02-14 at 15:37 By Ionut Arghire Meta received close to 10,000 vulnerability reports and paid out over $2.3 million in bug bounty rewards in 2024. The post Meta Paid Out Over $2.3 Million in Bug Bounties in 2024 appeared first on SecurityWeek. This article

React to this headline:

Meta Paid Out Over $2.3 Million in Bug Bounties in 2024 Read More »

International Space Station’s out-of-this-world selfie booth turns 15

Uncategorized / SecurityTicks

International Space Station’s out-of-this-world selfie booth turns 15 2025-02-14 at 15:18 By Richard Speed The Cupola continues to offer the best views in the universe It has been 15 years since the ultimate selfie booth, the Cupola, was attached to the International Space Station (ISS).… This article is an excerpt from The Register View Original

React to this headline:

International Space Station’s out-of-this-world selfie booth turns 15 Read More »

Strategies for building an effective threat management team

Uncategorized / SecurityTicks

Strategies for building an effective threat management team 2025-02-14 at 15:18 By The unfortunate reality is that tragic events, such as school shootings or violent incidents, have become a part of national discourse. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source React to this headline:

React to this headline:

Strategies for building an effective threat management team Read More »

In Other News: $10,000 YouTube Flaw, Cybereason CEO Sues Investors, New OT Security Tool

ICS/OT, In Other News / SecurityTicks

In Other News: $10,000 YouTube Flaw, Cybereason CEO Sues Investors, New OT Security Tool 2025-02-14 at 15:17 By SecurityWeek News Noteworthy stories that might have slipped under the radar: Google pays $10,000 bug bounty for YouTube vulnerability, Cybereason CEO sues two investors, Otorio launches new OT security tool. The post In Other News: $10,000 YouTube

React to this headline:

In Other News: $10,000 YouTube Flaw, Cybereason CEO Sues Investors, New OT Security Tool Read More »

AWS vacates its board seat at European cloud crew CISPE

Uncategorized / SecurityTicks

AWS vacates its board seat at European cloud crew CISPE 2025-02-14 at 14:50 By Paul Kunert … weeks after US titan was outvoted by other members to let Microsoft join the Euro cloud trade association Amazon’s Web Services wing has exited the board of CISPE (cloud infrastructure service providers in Europe), following a recent update

React to this headline:

AWS vacates its board seat at European cloud crew CISPE Read More »

SonicWall Firewall Vulnerability Exploited After PoC Publication

exploited, firewall, SonicWall, Vulnerabilities, vulnerability / SecurityTicks

SonicWall Firewall Vulnerability Exploited After PoC Publication 2025-02-14 at 14:36 By Ionut Arghire The exploitation of a recent SonicWall vulnerability has started shortly after proof-of-concept (PoC) code was published. The post SonicWall Firewall Vulnerability Exploited After PoC Publication appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this

React to this headline:

SonicWall Firewall Vulnerability Exploited After PoC Publication Read More »

2 charged over alleged New IRA terrorism activity linked to cops’ spilled data

Uncategorized / SecurityTicks

2 charged over alleged New IRA terrorism activity linked to cops’ spilled data 2025-02-14 at 14:18 By Connor Jones Officer says mistakenly published police details were shared ‘a considerable amount of times’ Two suspected New IRA members were arrested on Tuesday and charged under the Terrorism Act 2000 after they were found in possession of

React to this headline:

2 charged over alleged New IRA terrorism activity linked to cops’ spilled data Read More »

Germany is Strengthening Cybersecurity with Federal-State Collaboration and Digital Violence Prevention

cybersecurity, Europe / SecurityTicks

Germany is Strengthening Cybersecurity with Federal-State Collaboration and Digital Violence Prevention 2025-02-14 at 14:18 By Cyble BSI Expands Cybersecurity Cooperation with Hamburg Germany continues to strengthen its cybersecurity framework as the Federal Office for Information Security (BSI) and the Free and Hanseatic City of Hamburg formalize their collaboration. The agreement, signed on February 7, at

React to this headline:

Germany is Strengthening Cybersecurity with Federal-State Collaboration and Digital Violence Prevention Read More »

Salt Typhoon Targeting Old Cisco Vulnerabilities in Fresh Telecom Hacks

China, Nation-State, Salt Typhoon, telecoms / SecurityTicks

Salt Typhoon Targeting Old Cisco Vulnerabilities in Fresh Telecom Hacks 2025-02-14 at 14:05 By Ionut Arghire China-linked APT Salt Typhoon has been exploiting known vulnerabilities in Cisco devices in attacks on telecom providers in the US and abroad. The post Salt Typhoon Targeting Old Cisco Vulnerabilities in Fresh Telecom Hacks appeared first on SecurityWeek. This

React to this headline:

Salt Typhoon Targeting Old Cisco Vulnerabilities in Fresh Telecom Hacks Read More »

New Windows Zero-Day Exploited by Chinese APT: Security Firm

China, exploited, Mustang Panda, Vulnerabilities, Windows, Zero-Day / SecurityTicks

New Windows Zero-Day Exploited by Chinese APT: Security Firm 2025-02-14 at 13:52 By Eduard Kovacs ClearSky Cyber Security says it has seen a new Windows zero-day being exploited by a Chinese APT named Mustang Panda. The post New Windows Zero-Day Exploited by Chinese APT: Security Firm appeared first on SecurityWeek. This article is an excerpt

React to this headline:

New Windows Zero-Day Exploited by Chinese APT: Security Firm Read More »

SGNL Raises $30 Million for Identity Management Solution

Cybersecurity Funding, funding, identity, Identity & Access, SGNL / SecurityTicks

SGNL Raises $30 Million for Identity Management Solution 2025-02-14 at 13:24 By Ionut Arghire Identity management provider SGNL has raised $30 million in a Series A funding round led by Brightmind Partners. The post SGNL Raises $30 Million for Identity Management Solution appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

React to this headline:

SGNL Raises $30 Million for Identity Management Solution Read More »

Hackers Exploit Palo Alto Firewall Vulnerability Day After Disclosure

exploited, firewall, Palo Alto Networks, Vulnerabilities / SecurityTicks

Hackers Exploit Palo Alto Firewall Vulnerability Day After Disclosure 2025-02-14 at 13:24 By Eduard Kovacs Attempts to exploit CVE-2024-0108, an authentication bypass vulnerability in Palo Alto firewalls, started one day after disclosure. The post Hackers Exploit Palo Alto Firewall Vulnerability Day After Disclosure appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

React to this headline:

Hackers Exploit Palo Alto Firewall Vulnerability Day After Disclosure Read More »

AI-Powered Social Engineering: Ancillary Tools and Techniques

Uncategorized / SecurityTicks

AI-Powered Social Engineering: Ancillary Tools and Techniques 2025-02-14 at 13:24 By Social engineering is advancing fast, at the speed of generative AI. This is offering bad actors multiple new tools and techniques for researching, scoping, and exploiting organizations. In a recent communication, the FBI pointed out: ‘As technology continues to evolve, so do cybercriminals’ tactics.’

React to this headline:

AI-Powered Social Engineering: Ancillary Tools and Techniques Read More »

Microsoft: Russian-Linked Hackers Using ‘Device Code Phishing’ to Hijack Accounts

Uncategorized / SecurityTicks

Microsoft: Russian-Linked Hackers Using ‘Device Code Phishing’ to Hijack Accounts 2025-02-14 at 13:24 By Microsoft is calling attention to an emerging threat cluster it calls Storm-2372 that has been attributed to a new set of cyber attacks aimed at a variety of sectors since August 2024. The attacks have targeted government, non-governmental organizations (NGOs), information

React to this headline:

Microsoft: Russian-Linked Hackers Using ‘Device Code Phishing’ to Hijack Accounts Read More »